Vulnerability Details CVE-2024-24386
An issue in VitalPBX v.3.2.4-5 allows an attacker to execute arbitrary code via a crafted payload to the /var/lib/vitalpbx/scripts folder.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.7%
CVSS Severity
CVSS v3 Score 7.2
References
Products affected by CVE-2024-24386
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.4
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.4-2
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.4-4
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.6-1
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.6-2
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.8
-
cpe:2.3:a:vitalpbx:vitalpbx:3.0.9
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.0
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.1
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.2
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.3
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.4
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.5
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.6
-
cpe:2.3:a:vitalpbx:vitalpbx:3.1.7
-
cpe:2.3:a:vitalpbx:vitalpbx:3.2.1
-
cpe:2.3:a:vitalpbx:vitalpbx:3.2.2
-
cpe:2.3:a:vitalpbx:vitalpbx:3.2.3
-
cpe:2.3:a:vitalpbx:vitalpbx:3.2.4
-
cpe:2.3:a:vitalpbx:vitalpbx:3.2.5