CVE-2024-47253

Published Nov 5, 2024

Last updated 4 months ago

Overview

Description: In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an attacker with administrative privileges to write files on the filesystem and potentially achieve arbitrary remote code execution. This vulnerability cannot be exploited by users with lower privilege roles.
Source: product-security@axis.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.2
Impact score: 5.9
Exploitability score: 1.2
Vector string: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-22
product-security@axis.com: CWE-22

Hype score: Not currently trending

CVE-2024-47253 In 2N Access Commander versions 3.1.1.2 and prior, a Path Traversal vulnerability could allow an attacker to write files on the filesystem to achieve arbitrary remo… https://t.co/TmYJQE72nw
@CVEnew
5 Nov 2024
342 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:2n:access_commander:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47A7B866-FF8F-4CA9-A34C-78D361E21730",
            "versionEndIncluding": "3.1.1.2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References