From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine.
References
History

Thu, 12 Dec 2024 15:15:00 +0000

Type Values Removed Values Added
Weaknesses CWE-94
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Wed, 11 Dec 2024 19:00:00 +0000

Type Values Removed Values Added
Description From the VSPC management agent machine, under condition that the management agent is authorized on the server, it is possible to perform Remote Code Execution (RCE) on the VSPC server machine.
References
Metrics cvssV3_0

{'score': 9.9, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: hackerone

Published: 2024-12-11T18:52:27.501Z

Updated: 2024-12-12T14:42:44.457Z

Reserved: 2024-08-02T01:04:07.984Z

Link: CVE-2024-42448

cve-icon Vulnrichment

Updated: 2024-12-12T14:42:21.342Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-12-12T01:59:47.493

Modified: 2024-12-12T15:15:14.230

Link: CVE-2024-42448

cve-icon Redhat

No data.