CVE-2024-2054 Information

Description

The Artica-Proxy administrative web application will deserialize arbitrary PHP objects supplied by unauthenticated users and subsequently enable code execution as the \www-data\ user.

Reference

https://korelogic.com/Resources/Advisories/KL-001-2024-002.txt http://seclists.org/fulldisclosure/2024/Mar/12