- Description
- IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating the type of file in the File Manager T1 process. Attackers can make use of this weakness and upload malicious executable files into the system that can be sent to victims for performing further attacks.
- Source
- psirt@us.ibm.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 8
- Impact score
- 5.9
- Exploitability score
- 2.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
- Severity
- HIGH
- psirt@us.ibm.com
- CWE-434
- Hype score
- Not currently trending
CVE-2024-25034 Malicious File Upload Vulnerability in IBM Planning Analytics https://t.co/SLsTEs42le
@VulmonFeeds
24 Jan 2025
72 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-25034 IBM Planning Analytics 2.0 and 2.1 could be vulnerable to malicious file upload by not validating the type of file in the File Manager T1 process. Attackers can make … https://t.co/E581KoBwK9
@CVEnew
24 Jan 2025
209 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes