← back
CVE-2024-28269

CVE-2024-28269

CVSS 7.2 HIGHEPSS 1.0%CWE-434
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.2EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
30 Apr 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
ReCrystallize Server 5.10.0.0 allows administrators to upload files to the server. The file upload is not restricted, leading to the ability to upload of malicious files. This could result in a Remote Code Execution.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →