NVD Vulnerability Detail

Search Exploit, PoC

Exploit DB

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-41925

Summary	The web service for ONS-S8 - Spectra Aggregation Switch includes functions which do not properly validate user input, allowing an attacker to traverse directories, bypass authentication, and execute remote code.
Publication Date	Oct. 4, 2024, 8:15 a.m.
Registration Date	Oct. 4, 2024, noon
Last Update	Oct. 4, 2024, 10:50 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://www.cisa.gov/news-events/ics-advisories/icsa-24-275-01

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-98	PHP リモートファイルインクルージョン	https://cwe.mitre.org/data/definitions/98.html