Critical severity9.8OSV Advisory· Published Jun 27, 2024· Updated Apr 15, 2026
CVE-2024-6127
CVE-2024-6127
Description
BC Security Empire before 5.9.3 is vulnerable to a path traversal issue that can lead to remote code execution. A remote, unauthenticated attacker can exploit this vulnerability over HTTP by acting as a normal agent, completing all cryptographic handshakes, and then triggering an upload of payload data containing a malicious path.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.1, 1.2, 1.2.1, …+ 1 more
- (no CPE)range: 1.1, 1.2, 1.2.1, …
- (no CPE)range: <5.9.3
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.