CVE-2024-31978 | Siemens SINEC NMS up to 2.0 SP1 API Endpoint path traversal (ssa-128433)

Inserito da Angelo Barbosa | Apr 9, 2024 | CVE

A vulnerability classified as critical was found in Siemens SINEC NMS up to 2.0 SP1. This vulnerability affects unknown code of the component API Endpoint. The manipulation leads to path traversal.

This vulnerability was named CVE-2024-31978. The attack can be initiated remotely. There is no exploit available.

It is recommended to apply a patch to fix this issue.

CVE-2024-31978 | Siemens SINEC NMS up to 2.0 SP1 API Endpoint path traversal (ssa-128433)

Post correlati

CVE-2024-36578 | akbr update 1.0.0 update/index.js prototype pollution

CVE-2024-33149 | J2EEFAST 2.7.0 myProcessList sql_filter sql injection

CVE-2024-29229 | Synology Surveillance Station prior 9.2.0-9289/9.2.0-11289 WebAPI GetLiveViewPath authorization (SA_24_04)

CVE-2024-35272 | Microsoft unknown vulnerability