External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.This issue affects e-Belediye: before 2.0.642.
History

Tue, 24 Sep 2024 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Olgu Computer Systems
Olgu Computer Systems e-belediye
CPEs cpe:2.3:a:olgu_computer_systems:e-belediye:*:*:*:*:*:*:*:*
Vendors & Products Olgu Computer Systems
Olgu Computer Systems e-belediye
Metrics cvssV3_1

{'score': 9.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 24 Sep 2024 09:00:00 +0000

Type Values Removed Values Added
Description External Control of File Name or Path, : Incorrect Permission Assignment for Critical Resource vulnerability in Olgu Computer Systems e-Belediye allows Manipulating Web Input to File System Calls.This issue affects e-Belediye: before 2.0.642.
Title Local File Inclusion (LFI) in Olgu Computer Systems' e-Belediye
Weaknesses CWE-73
CWE-732
References
Metrics cvssV4_0

{'score': 9.4, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-09-24T08:47:05.277Z

Updated: 2024-10-14T16:07:53.096Z

Reserved: 2024-09-24T08:23:59.539Z

Link: CVE-2024-9142

cve-icon Vulnrichment

Updated: 2024-09-24T13:18:54.264Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-09-25T01:15:49.177

Modified: 2024-10-14T16:35:01.033

Link: CVE-2024-9142

cve-icon Redhat

No data.