Vulnerability Details CVE-2024-52054
Path Traversal in the Manager component of Wowza Streaming Engine below 4.9.1 allows an administrator user to create an XML definition file anywhere on the file system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 53.5%
CVSS Severity
CVSS v3 Score 2.7
References
Products affected by CVE-2024-52054
-
cpe:2.3:a:wowza:streaming_engine:4.3.0
-
cpe:2.3:a:wowza:streaming_engine:4.4.0
-
cpe:2.3:a:wowza:streaming_engine:4.4.1
-
cpe:2.3:a:wowza:streaming_engine:4.5.0
-
cpe:2.3:a:wowza:streaming_engine:4.6.0
-
cpe:2.3:a:wowza:streaming_engine:4.7.0
-
cpe:2.3:a:wowza:streaming_engine:4.7.1
-
cpe:2.3:a:wowza:streaming_engine:4.7.3
-
cpe:2.3:a:wowza:streaming_engine:4.7.4
-
cpe:2.3:a:wowza:streaming_engine:4.7.4.0.1
-
cpe:2.3:a:wowza:streaming_engine:4.7.5
-
cpe:2.3:a:wowza:streaming_engine:4.7.6
-
cpe:2.3:a:wowza:streaming_engine:4.7.7
-
cpe:2.3:a:wowza:streaming_engine:4.7.8
-
cpe:2.3:a:wowza:streaming_engine:4.8.0
-
cpe:2.3:a:wowza:streaming_engine:4.8.10
-
cpe:2.3:a:wowza:streaming_engine:4.8.11
-
cpe:2.3:a:wowza:streaming_engine:4.8.12
-
cpe:2.3:a:wowza:streaming_engine:4.8.13
-
cpe:2.3:a:wowza:streaming_engine:4.8.14
-
cpe:2.3:a:wowza:streaming_engine:4.8.15
-
cpe:2.3:a:wowza:streaming_engine:4.8.16
-
cpe:2.3:a:wowza:streaming_engine:4.8.17
-
cpe:2.3:a:wowza:streaming_engine:4.8.18
-
cpe:2.3:a:wowza:streaming_engine:4.8.19
-
cpe:2.3:a:wowza:streaming_engine:4.8.20
-
cpe:2.3:a:wowza:streaming_engine:4.8.21
-
cpe:2.3:a:wowza:streaming_engine:4.8.22
-
cpe:2.3:a:wowza:streaming_engine:4.8.23
-
cpe:2.3:a:wowza:streaming_engine:4.8.24
-
cpe:2.3:a:wowza:streaming_engine:4.8.25
-
cpe:2.3:a:wowza:streaming_engine:4.8.26
-
cpe:2.3:a:wowza:streaming_engine:4.8.27
-
cpe:2.3:a:wowza:streaming_engine:4.8.28
-
cpe:2.3:a:wowza:streaming_engine:4.8.5
-
cpe:2.3:a:wowza:streaming_engine:4.8.8.01
-
cpe:2.3:a:wowza:streaming_engine:4.8.9
-
cpe:2.3:a:wowza:streaming_engine:4.9.0
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-