CVE-2024-26566

EUVD-2024-23831
An issue in Cute Http File Server v.3.1 allows a remote attacker to escalate privileges via the password verification component.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
CISA-ADPADP
8.2 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 49%
Affected Products (NVD)
VendorProductVersion
iscutecute_http_file_server
3.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://cute.com
https://github.com/GZLDL/CVE/blob/main/CVE-2024-26566/CVE-2024-26566%20English.md
https://github.com/GZLDL/CVE/tree/main/Cute%20Http%20File%20Server%20JWT
http://cute.com
https://github.com/GZLDL/CVE/blob/main/CVE-2024-26566/CVE-2024-26566%20English.md
https://github.com/GZLDL/CVE/tree/main/Cute%20Http%20File%20Server%20JWT