How severe is CVE-2024-43033?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.8 out of 10.

What type of vulnerability is CVE-2024-43033?

This is classified as CWE-69, which is a common weakness in software security.

CVE-2024-43033

HIGH Year: 2024

CVSS v3 Score

8.8

High

Weakness Type

CWE-69

View all →

Vulnerability Description

JPress through 5.1.1 on Windows has an arbitrary file upload vulnerability that could cause arbitrary code execution via ::$DATA to AttachmentController, such as a .jsp::$DATA file to io.jpress.web.commons.controller.AttachmentController#upload. NOTE: this is unrelated to the attack vector for CVE-2024-32358.

CVE-2025-3941

MEDIUM

CVSS:5.4(Medium)

Improper Handling of Windows ::DATA Alternate Data Stream vulnerability in Tridium Niagara Framework on Windows, Tridium Niagara Enterprise Security on Windows allows Input Data Manipulation. This iss...

CWE-692025

CVE-2024-43033

Vulnerability Description

Related Vulnerabilities

CVE-2025-3941