CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Posted by Angelo Barbosa | Jul 5, 2024 | CVE

A vulnerability has been found in Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS and classified as critical. This vulnerability affects the function child_process of the file Node.js of the component Upload Handler. The manipulation leads to Privilege Escalation.

This vulnerability was named CVE-2024-39943. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-39943 | Rejetto HTTP File Server up to 0.52.9 on Linux/Unix/macOS Upload Node.js child_process Privilege Escalation

Related Posts

CVE-2023-46840 | Xen Device access control

CVE-2024-37084 | VMware Spring Cloud Data Flow up to 2.11.3 Skipper Server API unrestricted upload

CVE-2024-1701 | keerti1924 PHP-MYSQL-User-Login-System 1.0 /edit.php access control

CVE-2021-47358 | Linux Kernel up to 5.14.8 greybus use after free