Cyber Resilience

CVE-2024-57784

Medium

Published: 16 January 2025

Published
16 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 5.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N
EPSS Score 0.1820 95.3th percentile
Risk Priority 22 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-57784 is a medium-severity Path Traversal (CWE-22) vulnerability. Its CVSS base score is 5.5 (Medium).

Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked in the top 4.7% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2024-57784 is a directory traversal vulnerability (CWE-22) residing in the /php/script_uploads.php component of Zenitel AlphaWeb XE version 11.2.3.10. It carries a CVSS 3.1 base score of 5.5 and permits path manipulation that can expose or alter files outside intended directories.

An attacker with high privileges can reach the flaw over the network with low attack complexity and no user interaction, resulting in high confidentiality impact together with limited integrity changes on the affected system.

The single reference is a public gist that documents the issue but supplies no vendor advisory, patch details, or mitigation guidance. The associated EPSS score has remained flat at 0.1820 with no reported rise after disclosure.

EU & UK References

Vulnerability details

An issue in the component /php/script_uploads.php of Zenitel AlphaWeb XE v11.2.3.10 allows attackers to execute a directory traversal.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1005 Data from Local System Collection
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
T1083 File and Directory Discovery Discovery
Adversaries may enumerate files and directories or may search in specific locations of a host or network share for certain information within a file system.
Why these techniques?

Directory traversal enables arbitrary local file reads (T1005) and supports file/directory enumeration (T1083) via the web app component.

Confidence: MEDIUM · MITRE ATT&CK Enterprise v18.1

CVEs Like This One

CVE-2021-47849Shared CWE-22
CVE-2025-1335Shared CWE-22
CVE-2025-68953Shared CWE-22
CVE-2026-44973Shared CWE-22
CVE-2026-34911Shared CWE-22
CVE-2025-60946Shared CWE-22
CVE-2026-6024Shared CWE-22
CVE-2025-67160Shared CWE-22
CVE-2026-49128Shared CWE-22
CVE-2026-30914Shared CWE-22

Affected Assets

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the directory traversal flaw in /php/script_uploads.php through timely patching or code fixes.

prevent

Validates and sanitizes user-supplied file paths in the upload script to block directory traversal sequences like ../

prevent

Enforces strict access controls on file system operations within the upload component to restrict reads outside the intended directory.

References