CVE-2024-0758

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Jan 19, 2024

Updated: Jan 26, 2024

CWE ID 79

Summary

CVE-2024-0758 is a newly disclosed cross-site scripting (XSS) vulnerability affecting MolecularFaces before version 0.3.0. Maliciously crafted molfiles can be used by remote attackers to inject and execute arbitrary JavaScript code in victims' browsers, posing a significant security risk. Successful exploitation of this vulnerability could lead to data theft, session hijacking, and other malicious activities. Users are strongly advised to upgrade to the latest version of MolecularFaces as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uNW9nM
https://www.cve.org/CVERecord?id=CVE-2024-0758
https://nvd.nist.gov/vuln/detail/CVE-2024-0758

Back to Vulnerability Database

CVE-2024-0758

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations