CVE-2024-51541 | ABB ASPECT-Enterprise/NEXUS/MATRIX up to 3.08.02 filename control

Inserito da Angelo Barbosa | Dic 5, 2024 | CVE

A vulnerability, which was classified as problematic, was found in ABB ASPECT-Enterprise, NEXUS and MATRIX up to 3.08.02. Affected is an unknown function. The manipulation leads to improper control of filename for include/require statement in php program (‘php remote file inclusion’).

This vulnerability is traded as CVE-2024-51541. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-51541 | ABB ASPECT-Enterprise/NEXUS/MATRIX up to 3.08.02 filename control

Post correlati

CVE-2024-0159 | Dell Alienware Command Center unknown vulnerability (dsa-2024-016)

CVE-2024-45490 | libexpat up to 2.6.2 xmlparse.c XML_ParseBuffer Privilege Escalation (ID 887)

CVE-2024-4279 | Tutor LMS Plugin up to 2.7.0 on WordPress Course resource injection

CVE-2024-1168 | SEOPress Plugin up to 7.9 on WordPress Social Image URL cross site scripting