CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Closed-Loop: >> Cless Server Security Vulnerabilities

CVE-2024-40125

An arbitrary file upload vulnerability in the Media Manager function of Closed-Loop Technology CLESS Server v4.5.2 allows attackers to execute arbitrary code via uploading a crafted PHP file to the upload endpoint.

CVSS Score

9.8

EPSS Score

0.003

Published

2024-09-19

Page 1

Vulnerabilities

Vulnerable Software

Closed-Loop: >> Cless Server Security Vulnerabilities

Products

Pricing

Contact Us