An arbitrary file download vulnerability in the component /Doc/DownloadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request.
Metrics
Affected Vendors & Products
References
History
Tue, 03 Dec 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Erp
Erp management Software |
|
Weaknesses | CWE-78 | |
CPEs | cpe:2.3:a:erp:management_software:*:*:*:*:*:*:*:* | |
Vendors & Products |
Erp
Erp management Software |
|
Metrics |
cvssV3_1
|
Fri, 15 Nov 2024 19:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An arbitrary file download vulnerability in the component /Doc/DownloadFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-15T00:00:00
Updated: 2024-12-03T15:59:25.226Z
Reserved: 2024-08-21T00:00:00
Link: CVE-2024-44759
Vulnrichment
Updated: 2024-12-03T15:59:18.768Z
NVD
Status : Awaiting Analysis
Published: 2024-11-15T20:15:20.163
Modified: 2024-12-03T16:15:22.597
Link: CVE-2024-44759
Redhat
No data.