CVE-2024-25832

HIGH

F-logic DataCube3 v1.0 - Authenticated Unrestricted File Upload via Filename Extension Manipulation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2024-25832. PoCs published by Samy Younsi - NS Labs, 0xNslabs.

AI-analyzed exploit summary This exploit chains two CVEs (CVE-2024-25830 and CVE-2024-25832) to achieve remote code execution on DataCube3 v1.0. It first leaks root credentials via an info disclosure vulnerability, then authenticates and uploads a PHP reverse shell via unrestricted file upload.

Description

F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.

Exploits (2)

exploitdb WORKING POC

by Samy Younsi - NS Labs · textwebappsphp

https://www.exploit-db.com/exploits/51868

View Code ZIP pw:eip

This exploit chains two CVEs (CVE-2024-25830 and CVE-2024-25832) to achieve remote code execution on DataCube3 v1.0. It first leaks root credentials via an info disclosure vulnerability, then authenticates and uploads a PHP reverse shell via unrestricted file upload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: DataCube3 v1.0

No auth needed

Prerequisites: Network access to the target's web interface · Target must be running DataCube3 v1.0

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1098 - Account Manipulation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

nomisec WORKING POC 4 stars

by 0xNslabs · poc

https://github.com/0xNslabs/CVE-2024-25832-PoC

View Code ZIP pw:eip

This PoC exploits CVE-2024-25830 (improper access control) to leak root credentials and CVE-2024-25832 (unrestricted file upload) to deploy a PHP reverse shell on DataCube3 devices. The script automates the exploit chain, including authentication bypass and payload execution.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: F-logic DataCube3 version 1.0

No auth needed

Prerequisites: Network access to the target device · Target running DataCube3 version 1.0

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://neroteam.com/blog/f-logic-datacube3-vulnerability-report

Scores

CVSS v3 8.8

EPSS 0.1981

EPSS Percentile 95.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-434

Status published

Products (1)

f-logic/datacube3 1.0

Published Feb 29, 2024

Tracked Since Feb 18, 2026