CVE-2024-6117

Aug. 5, 2024, 12:41 p.m.

None
No Score

Description

A Unrestricted upload of file with dangerous type vulnerability in meeting management function in Hamastar MeetingHub Paperless Meetings 2021 allows remote authenticated users to perform arbitrary system commands via a crafted ASP file.

Product(s) Impacted

Product Versions
Hamastar MeetingHub Paperless Meetings
  • 2021

Weaknesses

Common security weaknesses mapped to this vulnerability.

CWE-434
Unrestricted Upload of File with Dangerous Type
The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.

References

https://zuso.ai/advisory/za-2024-02

Tags

CWE-434
ART@zuso.ai
2024-08-05
CVE-2024-6117

Date

  • Published: Aug. 5, 2024, 5:15 a.m.
  • Last Modified: Aug. 5, 2024, 12:41 p.m.

Status : Undergoing Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

ART@zuso.ai

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.