CVE-2024-0715

CVSS 3.1 Score 7.6 of 10 (high)

Details

Published Feb 20, 2024
CWE ID 917

Summary

The CVE-2024-0715 vulnerability, also known as Expression Language Injection, affects Hitachi Global Link Manager before version 8.8.7-03 on Windows. This vulnerability allows for code injection, posing a significant risk to organizations. The base severity is rated as HIGH with a base score of 7.6. The exploitability score is 2.8, and the attack vector is through the network with low privileges required. The potential impact includes low integrity and confidentiality impact but high availability impact. Remediation measures need to be taken to address this vulnerability in order to prevent unauthorized code injection attacks on affected systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share