CVE-2024-40125 | Closed-Loop Technology CLESS Server 4.5.2 PHP unrestricted upload

Posted by Angelo Barbosa | Sep 20, 2024 | CVE

A vulnerability, which was classified as critical, was found in Closed-Loop Technology CLESS Server 4.5.2. Affected is an unknown function of the component PHP Handler. The manipulation leads to unrestricted upload.

This vulnerability is traded as CVE-2024-40125. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-40125 | Closed-Loop Technology CLESS Server 4.5.2 PHP unrestricted upload

Related Posts

CVE-2024-32502 | Samsung Exynos W930 reference count

CVE-2024-4463 | Squelch Tabs and Accordions Shortcodes Plugin up to 0.4.7 on WordPress cross-site request forgery

CVE-2023-6123 | OpenText ALM Octane 16.2.100 neutralization

CVE-2024-34274 | OpenBD 20210306203917-6cbe797 Cookie bdglobals/bdclient_spot deserialization (Issue 89)