CVE-2024-55457

MEDIUM EXPLOITED NUCLEI

MasterSAM Star Gate 11 - Path Traversal

Title source: llm

Description

MasterSAM Star Gate 11 is vulnerable to directory traversal via /adama/adama/downloadService. An attacker can exploit this vulnerability by manipulating the file parameter to access arbitrary files on the server, potentially exposing sensitive information.

Exploits (2)

github WORKING POC 40 stars

by iSee857 · pythonpoc

https://github.com/iSee857/CVE-PoC/tree/main/MasterSAM_downloadService(CVE-2024-55457).py

View Code ZIP pw:eip

nomisec WRITEUP

by h13nh04ng · remote

https://github.com/h13nh04ng/CVE-2024-55457-PoC

View Code ZIP pw:eip

Nuclei Templates (1)

MasterSAM Star Gate v11 - Local File Inclusion

HIGHVERIFIEDby DhiyaneshDK

Shodan: html:"MasterSAM"

References (1)

[Various Sources] https://github.com/h13nh04ng/CVE-2024-55457-PoC

Scores

CVSS v3 6.5

EPSS 0.8041

EPSS Percentile 99.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Details

VulnCheck KEV 2025-06-27

CWE

CWE-22

Status published

Published Feb 20, 2025

Tracked Since Feb 18, 2026