A file write vulnerability exists in the OAS Engine Save Security Configuration functionality of Open Automation Software OAS Platform V19.00.0057. A specially crafted series of network requests can lead to arbitrary file creation or overwrite. An attacker can send a sequence of requests to trigger this vulnerability.
References
Configurations
No configuration.
History
03 Apr 2024, 17:24
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
03 Apr 2024, 14:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-03 14:15
Updated : 2024-04-03 17:24
NVD link : CVE-2024-22178
Mitre link : CVE-2024-22178
CVE.ORG link : CVE-2024-22178
JSON object : View
Products Affected
No product.
CWE
CWE-73
External Control of File Name or Path