CVE-2024-44570

HIGH EPSS 38.3%

Published Sep 11, 20241y ago · Modified Jun 17, 20261w ago

8.8 CVSS 3.1

High

Published Sep 11, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

RELY-PCIe v22.2.1 to v23.1.0 was discovered to contain a code injection vulnerability via the getParams function in phpinf.php.

Base Score

8.8

Exploitability

2.8

Impact

5.9

Vector string

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector Network

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Unchanged

Confidentiality High

Integrity High

Availability High

EPSS Exploit Probability

38.3% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

CWE-77 Command Injection Injection

Vendor	Product	Version	Range
relyum	rely-pcie_firmware	*	≥22.2.1 – ≤23.1.0
relyum	rely-pcie	*	any

system-on-chip.com http://system-on-chip.com

Broken Link
relyum.com https://www.relyum.com/web/support/vulnerability-report/

Broken Link

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.