Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
7.2
TeamT5 ThreatSonar Anti-Ransomware Lets Hackers Upload Harmful Files
Known exploited
CVE-2024-7694
CVE-2024-7694
Summary
The TeamT5 ThreatSonar Anti-Ransomware software doesn't check files uploaded to it thoroughly, allowing attackers to upload malicious files that can harm your server. This means an attacker with administrator access to the system can upload files that could potentially take control of your server. To stay safe, update the software as soon as possible and ensure that only authorized users have administrator access to the system.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| teamt5 | threatsonar anti-ransomware | All versions | – |
| teamt5 | threatsonar_anti-ransomware | <= 3.5.0 | – |
Original title
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability
Original description
TeamT5 ThreatSonar Anti-Ransomware contains an unrestricted upload of file with dangerous type vulnerability. ThreatSonar Anti-Ransomware does not properly validate the content of uploaded files. Remote attackers with administrator privileges on the product platform can upload malicious files, which can be used to execute arbitrary system commands on the server.
Vulnerability type
CWE-434
Unrestricted File Upload
- https://www.twcert.org.tw/en/cp-139-8000-e5a5c-2.html Third Party Advisory
- https://www.twcert.org.tw/tw/cp-132-7998-d76dd-1.html Third Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-... US Government Resource
Published: 17 Feb 2026 · Updated: 15 Mar 2026 · First seen: 6 Mar 2026