CVSS 3.1 Score 7.2 of 10 (high)


Published Mar 14, 2024
CWE ID 183


CVE-2024-1654 is a vulnerability that potentially allows unauthorized write operations, which can lead to remote code execution. This vulnerability requires the attacker to have authenticated admin access and knowledge of both an internal system identifier and details of another valid user. It has a high base severity score of 7.2 and a high impact score of 5.9. The affected products or domain are not specified in the provided information. The potential danger this vulnerability poses to an organization is that it can allow unauthorized individuals to execute remote code, potentially leading to further compromise of the system or unauthorized access to sensitive information. To remediate this vulnerability, organizations should ensure that authorized admin access is properly secured, restrict access to system identifiers and user details, and apply necessary patches or updates as they become available.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-1654 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options