Home

Description

An arbitrary file upload vulnerability in M2Soft CROWNIX Report & ERS v5.x to v5.5.14.1070, v7.x to v7.4.3.960, and v8.x to v8.2.0.345 allows attackers to execute arbitrary code via supplying a crafted file.

PUBLISHED Reserved 2025-01-09 | Published 2025-05-28 | Updated 2025-05-30 | Assigner mitre

References

www.m2soft.co.kr/sub/board/news.asp?mode=view&idx=2411

cve.org (CVE-2024-57338)

nvd.nist.gov (CVE-2024-57338)

Download JSON