Vulnerability Details CVE-2024-8330
6SHR system from Gether Technology does not properly validate uploaded file types, allowing remote attackers with regular privileges to upload web shell scripts and use them to execute arbitrary system commands on the server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.2%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2024-8330
-
cpe:2.3:a:6shr_system_project:6shr_system:-