CVE-2024-12917

CVSS 3.1 Score 8.3 of 10 (high)

Details

Published Feb 24, 2025

CWE ID 552

Summary

CVE-2024-12917 is a Files or Directories Accessible to External Parties vulnerability affecting Agito Computer's Health4All before version 10.01.2025. The issue arises from incorrectly configured access control security levels, enabling authentication abuse and potential exploitation. External parties can gain unauthorized access to files or directories, posing a significant risk to data confidentiality and integrity. Organizations using Health4All are strongly advised to apply the necessary patches or updates to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/14mBw2
https://www.cve.org/CVERecord?id=CVE-2024-12917
https://nvd.nist.gov/vuln/detail/CVE-2024-12917

Back to Vulnerability Database

CVE-2024-12917

CVSS 3.1 Score 8.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations