本頁列出影響 trcore dvc 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2024-11315 | The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. | [email protected] | 9.8 | 1.34% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11314 | The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. | [email protected] | 9.8 | 1.34% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11313 | The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. | [email protected] | 9.8 | 1.34% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11312 | The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. | [email protected] | 9.8 | 1.34% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11311 | The DVC from TRCore has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to upload arbitrary files to any directory, leading to arbitrary code execution by uploading webshells. | [email protected] | 9.8 | 1.34% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11310 | The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. | [email protected] | 7.5 | 0.67% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11309 | The DVC from TRCore has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system files. | [email protected] | 7.5 | 0.67% | 2024-11-18 | 2026-06-17 |
| CVE-2024-11308 | The DVC from TRCore encrypts files using a hardcoded key. Attackers can use this key to decrypt the files and restore the original content. | [email protected] | 6.2 | 0.15% | 2024-11-18 | 2026-06-17 |