CVE-2024-36811

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2024-36811
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-37295. Reason: This candidate is a reservation duplicate of CVE-2024-37295. Notes: All CVE users should reference CVE-2024-37295 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
CVSS

No CVSS.

References

No reference.

Configurations

No configuration.

History

28 Oct 2024, 21:15

Type Values Removed Values Added
CWE CWE-434
Summary
  • (es) Una vulnerabilidad de carga de archivos arbitrarios en la función de carga de imágenes de aimeos-core v2024.04 permite a los atacantes ejecutar código arbitrario cargando un archivo PHP manipulado.
Summary (en) An arbitrary file upload vulnerability in the image upload function of aimeos-core v2024.04 allows attackers to execute arbitrary code via uploading a crafted PHP file. (en) Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2024-37295. Reason: This candidate is a reservation duplicate of CVE-2024-37295. Notes: All CVE users should reference CVE-2024-37295 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.
CVSS v2 : unknown
v3 : 8.8 		v2 : unknown
v3 : unknown
References
  • {'url': 'https://drive.google.com/file/d/1QJWwaDB6smLCuNp10yZKWgpELTQJax31/view?usp=sharing', 'source': 'cve@mitre.org'}
  • {'url': 'https://drive.google.com/file/d/1n5_t-zmKHbx3H47xdhR5kuHTDc0Gxur3/view?usp=sharing', 'source': 'cve@mitre.org'}
  • {'url': 'https://github.com/aimeos/aimeos-core/commit/13e163126adff48f987b3b6faca28551effe0205', 'source': 'cve@mitre.org'}
  • {'url': 'https://github.com/aimeos/aimeos-core/commit/5eea7aa933ac7402044bc6d282f96fba44475ee2', 'source': 'cve@mitre.org'}
  • {'url': 'https://github.com/ssshah2131/CVE/blob/main/Aimeos_RCE', 'source': 'cve@mitre.org'}

22 Aug 2024, 18:35

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de carga de archivos arbitrarios en la función de carga de imágenes de aimeos-core v2024.04 permite a los atacantes ejecutar código arbitrario cargando un archivo PHP manipulado.
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 8.8
CWE CWE-434

07 Jun 2024, 19:24

Type Values Removed Values Added
New CVE
Information

Published : 2024-06-07 19:15

Updated : 2024-10-28 21:15

NVD link : CVE-2024-36811

Mitre link : CVE-2024-36811

CVE.ORG link : CVE-2024-36811

JSON object : View

Products Affected

No product.

CWE

No CWE.


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024