CVE-2024-8525

An unrestricted upload of file with dangerous type in Automated Logic WebCTRL 7.0 could allow an unauthenticated user to perform remote command execution via a crafted HTTP POST request which could lead to uploading a malicious file.
CVSS

No CVSS.

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type Values Removed Values Added
Summary
  • (es) Una carga sin restricciones de un archivo de tipo peligroso en Automated Logic WebCTRL 7.0 podría permitir que un usuario no autenticado realice una ejecución remota de comandos a través de una solicitud HTTP POST manipulada, lo que podría llevar a la carga de un archivo malicioso.

21 Nov 2024, 16:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-11-21 16:15

Updated : 2026-06-17 08:22


NVD link : CVE-2024-8525

Mitre link : CVE-2024-8525

CVE.ORG link : CVE-2024-8525


JSON object : View

Products Affected

No product.

CWE
CWE-434

Unrestricted Upload of File with Dangerous Type