VYPR
Unrated severityNVD Advisory· Published Nov 12, 2024· Updated Nov 12, 2024

FactoryTalk View ME Remote Code Execution Vulnerability via Project Save Path

CVE-2024-37365

Description

A remote code execution vulnerability exists in the affected product. The vulnerability allows users to save projects within the public directory allowing anyone with local access to modify and/or delete files. Additionally, a malicious user could potentially leverage this vulnerability to escalate their privileges by changing the macro to execute arbitrary code.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.