CVE-2024-10776
CVSS 3.1 Score 8.2 of 10 (high)
Details
Published Dec 6, 2024
CWE ID 306
Summary
CVE-2024-10776 is a vulnerability affecting Lua applications. Hackers can exploit this issue to deploy, remove, start, reload, or stop apps without authorization using the AppManager. This unauthorized manipulation poses a significant risk, enabling attackers to launch denial-of-service attacks, read and write files, and load malicious apps, potentially compromising the entire system.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share