Lucene search
HistoryMar 21, 2024 - 2:52 a.m.
CVE-2024-2054
artica-proxy
unauthenticated users
code execution
www-data
cve-2024-2054
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.005
Percentile
75.4%
The Artica-Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users and subsequently enable code execution as the “www-data” user.
Related
cve
cve
CVE-2024-2054
2024-03-21 02:52:27
vulnrichment
vulnrichment
CVE-2024-2054 Artica Proxy Unauthenticated PHP Deserialization Vulnerability
2024-03-05 18:56:22
prion
prion
Code injection
2024-03-14 22:47:29
korelogic
korelogic
Artica Proxy Unauthenticated PHP Deserialization Vulnerability
2024-03-05 00:00:00
githubexploit
githubexploit
Exploit for CVE-2024-2054
2024-03-25 07:01:59
zdt
zdt
Artica Proxy Unauthenticated PHP Deserialization Exploit
2024-03-27 00:00:00
Artica Proxy 4.50 Unauthenticated PHP Deserialization Vulnerability
2024-03-06 00:00:00
packetstorm
packetstorm
Artica Proxy Unauthenticated PHP Deserialization
2024-03-27 00:00:00
Artica Proxy 4.50 Unauthenticated PHP Deserialization
2024-03-06 00:00:00
cvelist
cvelist
CVE-2024-2054 Artica Proxy Unauthenticated PHP Deserialization Vulnerability
2024-03-05 18:56:22
metasploit
metasploit
Artica Proxy Unauthenticated PHP Deserialization Vulnerability
2024-03-15 16:10:05
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 03/29/2024
2024-03-29 18:14:02
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.4
Confidence
Low
EPSS
0.005
Percentile
75.4%
Related for NVD:CVE-2024-2054