CVE-2024-12185

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Dec 5, 2024
Updated: Dec 10, 2024
CWE ID 119
CWE ID 787
CWE ID 121

Summary

CVE-2024-12185 is a newly disclosed vulnerability affecting the Administrator Login Password Handler component in version 1.0 of the Hotel Management System. This issue involves a stack-based buffer overflow, caused by manipulating the argument "Str2". An attacker can exploit this locally to execute arbitrary code, as the exploit has already been made public. This vulnerability poses a significant risk to systems running the affected version of the Hotel Management System. Users are strongly advised to apply patches or updates as soon as they become available to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share