High severity7.2NVD Advisory· Published Jun 14, 2024· Updated Apr 15, 2026

CVE-2024-27178

Description

An attacker can get Remote Code Execution by overwriting files. Overwriting files is enable by falsifying file name variable. This vulnerability can be executed in combination with other vulnerabilities and difficult to execute alone. So, the CVSS score for this vulnerability alone is lower than the score listed in the "Base Score" of this vulnerability. For detail on related other vulnerabilities, please ask to the below contact point. https://www.toshibatec.com/contacts/products/ As for the affected products/models/versions, see the reference URL.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

seclists.org/fulldisclosure/2024/Jul/1nvd
jvn.jp/en/vu/JVNVU97136265/index.htmlnvd
www.toshibatec.com/information/20240531_01.htmlnvd
www.toshibatec.com/information/pdf/information20240531_01.pdfnvd

News mentions

No linked articles in our index yet.

cvss	0.468
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000