Detections
Analytics

CVE-2024-27173

critical

Description

Remote Command program allows an attacker to get Remote Code Execution by overwriting existing Python files containing executable code. This vulnerability can be executed in combination with other vulnerabilities and difficult to execute alone. So, the CVSS score for this vulnerability alone is lower than the score listed in the "Base Score" of this vulnerability. For detail on related other vulnerabilities, please ask to the below contact point. https://www.toshibatec.com/contacts/products/ As for the affected products/models/versions, see the reference URL.

References

https://www.toshibatec.com/information/pdf/information20240531_01.pdf

https://www.toshibatec.com/information/20240531_01.html

https://jvn.jp/en/vu/JVNVU97136265/index.html

http://seclists.org/fulldisclosure/2024/Jul/1

Details

Source: Mitre, NVD

Published: 2024-06-14

Updated: 2026-04-15

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.03166