A vulnerability was found in Learning Digital Orca HCM up to 10.x. It has been declared as critical. This vulnerability affects unknown code of the component File Download Handler. The manipulation leads to path traversal.
This vulnerability was named CVE-2024-8585. The attack can be initiated remotely. There is no exploit available.
It is recommended to upgrade the affected component.