CVE-2024-0642

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jan 17, 2024
Updated: Jan 24, 2024
CWE ID 284

Summary

CVE-2024-0642 is a newly identified vulnerability affecting the C21 Live Encoder and Live Mosaic product, version 5.3. This issue stems from insufficient access control, enabling a remote attacker to infiltrate the application with administrator privileges. The lack of proper credential management exposes the application to potential unauthorized access, posing a significant security risk. An attacker can exploit this vulnerability by manipulating the application endpoint. This weakness can result in unauthorized system modifications, data theft, or even complete system compromise. It is essential for users to apply the necessary security patches to mitigate this risk promptly.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share