CVE-2024-6083

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Jun 18, 2024

Updated: Jun 20, 2024

CWE ID 434

Summary

CVE-2024-6683: A critical vulnerability was identified in PHPVibe 11.0.46, affecting an unknown function in the /app/uploading/upload-mp3.php file of the Media Upload Page component. Maliciously crafted file uploads can result in unrestricted file uploads, potentially leading to data compromise. This vulnerability can be exploited remotely, with the exploit having been publicly disclosed. Vendor notification was made but no response was received. (VDB-268824)

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/whUNF3
https://www.cve.org/CVERecord?id=CVE-2024-6083
https://nvd.nist.gov/vuln/detail/CVE-2024-6083

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners

CVE-2024-6083

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations