CVE-2024-8752

HIGH EXPLOITED NUCLEI

WebIQ 2.15.9 - Path Traversal

Title source: llm

Exploitation Summary

CVE-2024-8752 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including D3anSPGDMS. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains only a README.md file with minimal information about CVE-2024-8752, targeting WebIQ 2.15.9, but no actual exploit code or technical details are provided.

Description

The Windows version of WebIQ 2.15.9 is affected by a directory traversal vulnerability that allows remote attackers to read any file on the system.

Exploits (1)

nomisec STUB

by D3anSPGDMS · infoleak

https://github.com/D3anSPGDMS/CVE-2024-8752

View Code ZIP pw:eip

The repository contains only a README.md file with minimal information about CVE-2024-8752, targeting WebIQ 2.15.9, but no actual exploit code or technical details are provided.

Classification

Stub 10%

Attack Type

Other

Complexity

Theoretical

Reliability

Theoretical

Target: WebIQ 2.15.9

No auth needed

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

WebIQ 2.15.9 - Directory Traversal

HIGHVERIFIEDby s4e-io

Shodan: title:"WebIQ"

References (1)

Core 1

Core References

Exploit, Third Party Advisory

https://www.tenable.com/security/research/tra-2024-38

Scores

CVSS v3 7.5

EPSS 0.1166

EPSS Percentile 95.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

VulnCheck KEV 2024-10-07

CWE

CWE-22

Status published

Products (1)

smart-hmi/webiq 2.15.9

Published Sep 16, 2024

Tracked Since Feb 18, 2026