CVE-2024-34521

LOW EPSS 42.4%

Published Feb 12, 20251y ago · Modified Jun 17, 20261w ago

3.5 CVSS 3.1

Low

Published Feb 12, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

A directory traversal vulnerability exists in the Mavenir SCE Application Provisioning Portal, version PORTAL-LBS-R_1_0_24_0, which allows an administrative user to access system files with the file permissions of the privileged system user running the application.

CVSS Details

Base Score

3.5

Exploitability

0.9

Impact

2.5

Vector string

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required High

User Interaction Required

Scope Unchanged

Confidentiality Low

Integrity Low

Availability None

Threat Intelligence

EPSS Exploit Probability

42.4% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

References 1

github.com https://github.com/whitewhale-dmb/Vulnerability-Research/tree/main/CVE-2024-34521

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.