Wangshen SecGate 3600 ?g=log_import_save unrestricted upload
CVE-2024-5050

Currently unrated

Key Information:

Vendor: Wangshen
Status: Secgate 3600
Vendor: CVE Published:; 17 May 2024

What is CVE-2024-5050?

A vulnerability, which was classified as critical, was found in Wangshen SecGate 3600 up to 20240516. This affects an unknown part of the file /?g=log_import_save. The manipulation of the argument reqfile leads to unrestricted upload. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-264747.

Affected Version(s)

SecGate 3600 20240516

References

https://vuldb.com/?id.264747

vdb-entrytechnical-description

https://vuldb.com/?ctiid.264747

signaturepermissions-required

https://vuldb.com/?submit.335968

third-party-advisory

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 17, 2024
Vulnerability Reserved
May 17, 2024

Credit

H0e4a0r1t (VulDB User)