KEVIntel
Back to KEVs
8.6
CVSS
High

CVE-2024-48248

PUBLISHED

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead...

Exploited in the wild PoC available Remote Low complexity No user interaction
Vendor
NAKIVO
Product
Backup & Replication Director
Published
Mar 04, 2025
EPSS

Description

NAKIVO Backup & Replication before 11.0.0.88174 allows absolute path traversal for reading files via getImageByPath to /c/router (this may lead to remote code execution across the enterprise because PhysicalDiscovery has cleartext credentials).

cisa nuclei_scanner edge nessus_scanner

CVSS scores

CVSS v3.1 8.6 High

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Exploitation status

Exploited in the wild

Recorded 2025-03-19 00:00:00 UTC · Source

Proof of concept available

Recorded 2025-01-28 04:46:13 UTC · Source

SSVC decision points

Exploitation
active
Automatable
Yes
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA Mar 19, 2025

Scanner integrations

Scanner Reference Detected
Nessus https://www.tenable.com/plugins/nessus/114612 Jun 02, 2025
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-48248.yaml Apr 25, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

watchtowrlabs/nakivo-arbitrary-file-read-poc-CVE-2024-48248

github · Created 2025-01-28 04:46:13 UTC · 4 stars

Timeline

  • CVE ID Reserved

  • Proof of Concept Exploit Available

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Nuclei

  • Detected by Nessus