VYPR
Critical severity9.8OSV Advisory· Published Jun 27, 2024· Updated Apr 15, 2026

CVE-2024-6127

CVE-2024-6127

Description

BC Security Empire before 5.9.3 is vulnerable to a path traversal issue that can lead to remote code execution. A remote, unauthenticated attacker can exploit this vulnerability over HTTP by acting as a normal agent, completing all cryptographic handshakes, and then triggering an upload of payload data containing a malicious path.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Bc Security/EmpireOSV2 versions
    1.1, 1.2, 1.2.1, …+ 1 more
    • (no CPE)range: 1.1, 1.2, 1.2.1, …
    • (no CPE)range: <5.9.3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.