CVE-2024-7694
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability
CVSS
—
Sin CVSS
EPSS
1.8%
p76
KEV
SÍ
17 feb 2026
Exploit Today
73
0-100
Publicado: — · Última mod.: —
Producto
TeamT5 / ThreatSonar Anti-Ransomware
Vulnerabilidad
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability
Añadido a KEV
17 feb 2026
Remediar antes de
10 mar 2026
Uso conocido en ransomware
No
Descripción resumida
TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability. ThreatSonar Anti-Ransomware does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system commands on the server.
Acción requerida
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notas
https://teamt5.org/en/posts/vulnerability-notice-threat-sonar-anti-ransomware-20240715/ ; https://www.twcert.org.tw/en/cp-139-8000-e5a5c-2.html ; https://nvd.nist.gov/vuln/detail/CVE-2024-7694
Sin CVEs relacionados por CWE o producto.