Description
Kramer VIAware allows an unauthenticated user to upload arbitrary files. An attacker can exploit it to achieve remote code execution.
Remediation
Upgrade to the latest version of Kramer VIAware
References
Related Vulnerabilities
Oracle Database Server CVE-2008-0346 Vulnerability (CVE-2008-0346)
Envoy Proxy CVE-2024-45810 Vulnerability (CVE-2024-45810)
Zikula Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2293)
Tornado URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-28370)