CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-25832

F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.079

EPSS Ranking 91.6%

CVSS Severity

CVSS v3 Score 8.8

References

https://neroteam.com/blog/f-logic-datacube3-vulnerability-report
https://neroteam.com/blog/f-logic-datacube3-vulnerability-report

Products affected by CVE-2024-25832

F-Logic » Datacube3 » Version: N/A

cpe:2.3:h:f-logic:datacube3:-
F-Logic » Datacube3 » Version: 1.0

cpe:2.3:o:f-logic:datacube3:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-25832

Products

Pricing

Contact Us