A vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application allows users to upload arbitrary files via TFTP. This could allow an attacker to upload malicious firmware images or other files, that could potentially lead to remote code execution.
References
Configurations
No configuration.
History
No history.
Information
Published : 2024-02-13 09:15
Updated : 2024-02-13 14:01
NVD link : CVE-2024-23811
Mitre link : CVE-2024-23811
CVE.ORG link : CVE-2024-23811
JSON object : View
Products Affected
No product.
CWE
CWE-434
Unrestricted Upload of File with Dangerous Type