Vulnerabilities > CVE-2024-7729

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
CWE-552
NVD
Published: 2024-08-14
Updated: 2024-08-14

Summary

The CAYIN Technology CMS lacks proper access control, allowing unauthenticated remote attackers to download arbitrary CGI files.

Common Weakness Enumeration (CWE)

References