7.5
CVE-2024-7107
- EPSS 0.29%
- Veröffentlicht 26.09.2024 12:15:03
- Zuletzt bearbeitet 03.06.2026 13:16:17
- Quelle iletisim@usom.gov.tr
- CVE-Watchlists
- Unerledigt
LoginDirectory Traversal in National Keep's CyberMath
Files or Directories Accessible to External Parties vulnerability in National Keep Cyber Security Services CyberMath allows Collect Data from Common Resource Locations. This issue affects CyberMath: before CYBM.240816253.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nationalkeep ≫ Cybermath Version < cybm.240816253
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.201 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
| iletisim@usom.gov.tr | 6.8 | 0 | 0 |
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:L/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
CWE-552 Files or Directories Accessible to External Parties
The product makes files or directories accessible to unauthorized actors, even though they should not be.
https://www.usom.gov.tr/bildirim/tr-24-1549
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1549