CVE-2024-27171 Information

Description

A remote attacker using the insecure upload functionality will be able to overwrite any Python file and get Remote Code Execution. As for the affected products/models/versions see the reference URL.

Reference

https://www.toshibatec.com/information/20240531_01.html https://www.toshibatec.com/information/pdf/information20240531_01.pdf https://jvn.jp/en/vu/JVNVU97136265/index.html