ReportizFlow
Filtered by vendor Bmc
Subscriptions
Filtered by product Compuware Istrobe Web
Subscriptions
Total
1 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-58298 | 1 Bmc | 1 Compuware Istrobe Web | 2025-12-12 | N/A |
| Compuware iStrobe Web 20.13 contains a pre-authentication remote code execution vulnerability that allows unauthenticated attackers to upload malicious JSP files through a path traversal in the file upload form. Attackers can exploit the 'fileName' parameter to upload a web shell and execute arbitrary commands by sending POST requests to the uploaded JSP endpoint. | ||||
Page 1 of 1.