A vulnerability was found in SAS Studio 9.4. It has been declared as critical. This vulnerability affects unknown code of the file /SASStudio/SASStudio/sasexec/{sessionID}/{InternalPath}. The manipulation leads to unrestricted upload.
This vulnerability was named CVE-2024-48734. The attack can be initiated remotely. There is no exploit available.