CVE-2024-0319

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jan 15, 2024
Updated: Jan 19, 2024
CWE ID 601

Summary

CVE-2024-0319 is an Open Redirect vulnerability identified in FireEye HXTool version 4.6. This issue allows an attacker to manipulate the 'redirect_uri' parameter, leading to the redirection of a legitimate user to a malicious page. Exploitation of this vulnerability could result in data theft or phishing attacks, posing a significant security risk. FireEye has released a patch to address this issue, and users are strongly advised to update their software to mitigate the threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • FireEye HXTool

Affected Vendors

  • FireEye, Inc.