Path Injection Vulnerability in Logpoint Software
CVE-2024-33858
Currently unrated
What is CVE-2024-33858?
A path injection vulnerability exists in Logpoint software prior to version 7.4.0, allowing attackers to manipulate the source_name parameter when adding a CSV enrichment source. This manipulation can lead to the writing of CSV files to arbitrary paths within the /tmp directory, posing a significant risk of file system compromise. Organizations utilizing affected versions should assess their exposure and implement the necessary patches to mitigate this potential security threat.
Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.
Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.