CVE-2024-12356

Summary

CVE-2024-12356 is a critical vulnerability affecting Privileged Remote Access (PRA) and Remote Support (RS) products. An attacker can exploit this issue to inject commands that are executed with site user privileges, without requiring authentication. This poses a significant risk as an unauthenticated attacker could gain unauthorized access and control over the affected systems. The vulnerability needs to be addressed promptly through updates or workarounds to prevent potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.