Vulnerability in Avid Nexis E-series
CVE-2024-26293
The Avid Nexis Agent uses a vulnerable gSOAP version. An undocumented vulnerability impacting gSOAP v2.8 makes the application vulnerable to an Unauthenticated Path Traversal vulnerability. This issue affects Avid NEXIS E-series: before 20…
EPSS: 0.004 (26.8th percentile) — read the EPSS interpretation.
Affected products
- Avid Nexis E-series — versions 0
- Avid Nexis F-series — versions 0
- Avid Nexis Pro+ — versions 0
- Avid System Director Appliance (Sda+) — versions 0
Weakness classification (CWE)
References
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (vendor-advisory)
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (technical-description, third-party-advisory)
- a6d3dc9e-0591-4a13-bce7-0f5b31ff6158 (third-party-advisory)