Vulnerability Details CVE-2024-52054
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an administrator user to create an XML definition file anywhere on the file system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 41.2%
CVSS Severity
CVSS v3 Score 2.7
References
Products affected by CVE-2024-52054
-
cpe:2.3:a:wowza:streaming_engine:4.3.0
-
cpe:2.3:a:wowza:streaming_engine:4.4.0
-
cpe:2.3:a:wowza:streaming_engine:4.4.1
-
cpe:2.3:a:wowza:streaming_engine:4.5.0
-
cpe:2.3:a:wowza:streaming_engine:4.6.0
-
cpe:2.3:a:wowza:streaming_engine:4.7.0
-
cpe:2.3:a:wowza:streaming_engine:4.7.1
-
cpe:2.3:a:wowza:streaming_engine:4.7.3
-
cpe:2.3:a:wowza:streaming_engine:4.7.4
-
cpe:2.3:a:wowza:streaming_engine:4.7.4.0.1
-
cpe:2.3:a:wowza:streaming_engine:4.7.5
-
cpe:2.3:a:wowza:streaming_engine:4.7.6
-
cpe:2.3:a:wowza:streaming_engine:4.7.7
-
cpe:2.3:a:wowza:streaming_engine:4.7.8
-
cpe:2.3:a:wowza:streaming_engine:4.8.0
-
cpe:2.3:a:wowza:streaming_engine:4.8.10
-
cpe:2.3:a:wowza:streaming_engine:4.8.11
-
cpe:2.3:a:wowza:streaming_engine:4.8.12
-
cpe:2.3:a:wowza:streaming_engine:4.8.13
-
cpe:2.3:a:wowza:streaming_engine:4.8.14
-
cpe:2.3:a:wowza:streaming_engine:4.8.15
-
cpe:2.3:a:wowza:streaming_engine:4.8.16
-
cpe:2.3:a:wowza:streaming_engine:4.8.17
-
cpe:2.3:a:wowza:streaming_engine:4.8.18
-
cpe:2.3:a:wowza:streaming_engine:4.8.19
-
cpe:2.3:a:wowza:streaming_engine:4.8.20
-
cpe:2.3:a:wowza:streaming_engine:4.8.21
-
cpe:2.3:a:wowza:streaming_engine:4.8.22
-
cpe:2.3:a:wowza:streaming_engine:4.8.23
-
cpe:2.3:a:wowza:streaming_engine:4.8.24
-
cpe:2.3:a:wowza:streaming_engine:4.8.25
-
cpe:2.3:a:wowza:streaming_engine:4.8.26
-
cpe:2.3:a:wowza:streaming_engine:4.8.27
-
cpe:2.3:a:wowza:streaming_engine:4.8.28
-
cpe:2.3:a:wowza:streaming_engine:4.8.5
-
cpe:2.3:a:wowza:streaming_engine:4.8.8.01
-
cpe:2.3:a:wowza:streaming_engine:4.8.9
-
cpe:2.3:a:wowza:streaming_engine:4.9.0
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-