What the vulnerability does
01Description
Delta Electronics DTN Soft version 2.0.1 and prior are vulnerable to an attacker achieving remote code execution through a deserialization of untrusted data vulnerability.
CVE-2024-8255
HIGH
CVE-2024-8255: Path Traversal in Ocean Data Systems Dream Report
CVSS base score
8.4/10
CVSS vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Key dates
02Disclosure timeline
August 29, 2024
CVE published
August 29, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2026-23737 seroval Affected by Remote Code Execution via JSON Deserialization
CVE-2024-54678
CVE-2026-49740 TYPO3 CMS - Insecure Deserialization in Core API
CVE-2021-32824 Regular expression Denial of Service in MooTools
CVE-2024-49688 WordPress ARPrice plugin <= 4.1.3 - Unauthenticated PHP Object Injection vulnerability
