CVE-2024-1624

CVSS 3.1 Score 9.4 of 10 (high)

Details

Published Mar 1, 2024
CWE ID 78

Summary

CVE-2024-1624 is a critical OS Command Injection vulnerability that affects various products from 3DEXPERIENCE, SIMULIA Abaqus, and CATIA Composer. Releases ranging from R2022x to R2024x are impacted. An attacker can exploit this vulnerability by sending a maliciously crafted HTTP request, leading to arbitrary command execution. This vulnerability poses a significant risk, allowing attackers to gain unauthorized access, install malware, or disrupt system functionality. Users are strongly urged to apply the necessary patches as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share