What is CVE-2024-6911?

CVE-2024-6911 is a vulnerability in Perkinelmer Processplus, classified under Files or Directories Accessible to External Parties. Published 2024-07-22.

Is CVE-2024-6911 known to be exploited?

21 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Perkinelmer Processplus

CVE-2024-6911

Files on the Windows system are accessible without authentication to external parties due to a local file inclusion in PerkinElmer ProcessPlus.This issue affects ProcessPlus: through 1.11.6507.0.

EPSS: 0.933 (99.8th percentile) — read the EPSS interpretation.

Affected products

Perkinelmer Processplus — versions 0

Weakness classification (CWE)

CWE-552 — Files or Directories Accessible to External Parties

Public proof-of-concept exploits

12442RF/POC
20142995/nuclei-templates
ARPSyndicate/cve-scores
DMW11525708/wiki
Lern0n/Lernon-POC
Linxloop/fork_
WhosGa/MyWiki
Yuan08o/pocs
admin772/POC
adminlove520/pocWiki

References

cyberdanube.com/en/en-multiple-vulnerabilities-in-perten-processplus/ (third-party-advisory)
seclists.org/fulldisclosure/2024/Jul/13

Frequently asked questions

What is CVE-2024-6911?: CVE-2024-6911 is a vulnerability in Perkinelmer Processplus, classified under Files or Directories Accessible to External Parties. Published 2024-07-22.
Is CVE-2024-6911 known to be exploited?: 21 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.