CVE-2024-10776

CVSS 3.1 Score 8.2 of 10 (high)

Details

Published Dec 6, 2024
CWE ID 306

Summary

CVE-2024-10776 is a vulnerability affecting Lua applications. Hackers can exploit this issue to deploy, remove, start, reload, or stop apps without authorization using the AppManager. This unauthorized manipulation poses a significant risk, enabling attackers to launch denial-of-service attacks, read and write files, and load malicious apps, potentially compromising the entire system.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share