We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2024-51163



Description

A Local File Inclusion vulnerability in Vegam Solutions Vegam 4i versions 6.3.47.0 and earlier allows a remote attacker to obtain sensitive information through the print label function. Specifically, the filePathList parameter is susceptible to LFI, enabling a malicious user to include files from the web server, such as web.config or /etc/host, leading to the disclosure of sensitive information.

Reserved 2024-10-28 | Published 2024-11-20 | Updated 2025-01-09 | Assigner mitre

References

github.com/rahulkadavil/CVEs/tree/main/CVE-2024-51163

github.com/Henkel-CyberVM/CVEs/tree/main/CVE-2024-51163

cve.org (CVE-2024-51163)

nvd.nist.gov (CVE-2024-51163)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-51163

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.