File Upload Vulnerability in Advantive VeraCore Software
CVE-2024-57968

9.9CRITICAL

Key Information:

Vendor
Advantive
Status
Veracore
Vendor
CVE Published:
3 February 2025

Badges

πŸ“ˆ TrendedπŸ“ˆ Score: 3,660πŸ’° RansomwareπŸ‘Ύ Exploit ExistsπŸ“° News Worthy

What is CVE-2024-57968?

CVE-2024-57968 is a file upload vulnerability found in Advantive VeraCore software, a product designed for managing business operations in various industries, including inventory and order management. This vulnerability enables remote authenticated users to upload files into unintended directories, which can be accessed by other users during web browsing. Consequently, this flaw poses serious risks to organizations, as it could lead to unauthorized data access or degradation of application integrity.

Technical Details

The vulnerability exists in versions of Advantive VeraCore prior to 2024.4.2.1 and is exploited through the upload.aspx page. This flaw allows authenticated users to manipulate the file upload functionality, potentially leading to files being placed in unsecured areas of the server. Such misconfigurations can expose sensitive data or enable further exploits.

Potential Impact of CVE-2024-57968

  1. Unauthorized Data Access: Attackers could leverage this vulnerability to upload malicious files to publicly accessible directories, making sensitive data vulnerable to exposure or theft.

  2. Compromise of System Integrity: The ability to upload files without proper restrictions can allow attackers to inject malware or manipulate existing files, leading to system exploitation or additional attack vectors.

  3. Increased Attack Surface: By exploiting this vulnerability, threat actors could gain entry into the network environment, potentially compromising other systems and escalating their attacks within an organization.

Affected Version(s)

VeraCore 0 < 2024.4.2.1

News Articles

favicon imageThe Hacker News

XE Hacker Group Exploits VeraCore Zero-Day to Deploy Persistent Web Shells

XE Group exploits a VeraCore zero-day (CVE-2024-57968) to deploy web shells, enabling persistent access and targeting supply chains in manufacturing a

2 weeks ago

favicon imageHelp Net Security

Cybercrime gang exploited VeraCore zero-day vulnerabilities for years (CVE-2025-25181, CVE-2024-57968) - Help Net Security

Cybercriminal outfit XE Group has been quietly exploiting zero-day vulnerabilities (CVE-2025-25181, CVE-2024-57968) in VeraCore software.

2 weeks ago

References

https://advantive.my.site.com/support/s/article/VeraCore-...
https://intezer.com/blog/research/xe-group-exploiting-zer...
https://www.solissecurity.com/en-us/insights/xe-group-fro...

CVSS V3.1

Score:
9.9
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • πŸ“ˆ

    Vulnerability started trending

  • πŸ’°

    Used in Ransomware

  • πŸ‘Ύ

    Exploit known to exist

  • πŸ“°

    First article discovered by Help Net Security

  • Vulnerability published

  • Vulnerability Reserved

.