CVE-2024-21464

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 6, 2025
Updated: Jan 10, 2025
CWE ID 120

Summary

CVE-2024-21464 is a newly identified memory corruption vulnerability. It affects the IPA statistics processing feature, which becomes vulnerable when no active clients are registered. The issue arises due to a programming error that allows an attacker to manipulate the memory of the affected system. Successful exploitation of this vulnerability could result in arbitrary code execution, potentially leading to significant security risks for the targeted organization. It is essential to apply the forthcoming patches or updates from the vendor to mitigate this issue.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share