CVE-2024-3227
Published: 03 April 2024
Summary
CVE-2024-3227 is a medium-severity Path Traversal: '../filedir' (CWE-24) vulnerability in Weaver E-Office. Its CVSS base score is 4.7 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Direct Volume Access (T1006); ranked at the 35.5th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-31819
Vulnerability details
A vulnerability was found in Panwei eoffice OA up to 9.5. It has been declared as critical. This vulnerability affects unknown code of the file /general/system/interface/theme_set/save_image.php of the component Backend. The manipulation of the argument image_type leads to path traversal:…
more
'../filedir'. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-259072.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Path traversal in file upload endpoint (/general/system/interface/theme_set/save_image.php) enables exploitation of public-facing application (T1190), arbitrary file upload for ingress tool transfer (T1105) and web shell deployment (T1505.003), and direct filesystem access (T1006 as noted in advisory).
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.