Unrated severityNVD Advisory· Published Sep 9, 2024· Updated Sep 9, 2024
LEARNING DIGITAL Orca HCM - Arbitrary File Download
CVE-2024-8585
Description
Orca HCM from LEARNING DIGITA does not properly restrict a specific parameter of the file download functionality, allowing a remote attacker with regular privileges to download arbitrary system files.
Affected products
1- Range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.twcert.org.tw/en/cp-139-8042-f9f26-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-8041-dfbf9-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.