nvd-json-data-feeds/CVE-2024/CVE-2024-365xx/CVE-2024-36528.json

{
  "id": "CVE-2024-36528",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2024-06-10T15:15:52.483",
  "lastModified": "2024-06-10T18:06:22.600",
  "vulnStatus": "Awaiting Analysis",
  "descriptions": [
    {
      "lang": "en",
      "value": "nukeviet v.4.5 and before and nukeviet-egov v.1.2.02 and before have a Deserialization vulnerability which results in code execution via /admin/extensions/download.php and /admin/extensions/upload.php."
    },
    {
      "lang": "es",
      "value": "nukeviet v.4.5 y anteriores y nukeviet-egov v.1.2.02 y anteriores tienen una vulnerabilidad de deserializaci\u00f3n que da como resultado la ejecuci\u00f3n de c\u00f3digo a trav\u00e9s de /admin/extensions/download.php y /admin/extensions/upload.php."
    }
  ],
  "metrics": {},
  "references": [
    {
      "url": "https://mat4mee.notion.site/2-bug-chains-in-nukeViet-lead-to-RCE-bdd42b20b05a448fbe87c752b41bb15f",
      "source": "cve@mitre.org"
    }
  ]
}