CVE-2024-25552

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Mar 1, 2024
CWE ID 428

Summary

CVE-2024-25552 is a newly disclosed cybersecurity vulnerability that allows local attackers to elevate their privileges to administrative levels. By inserting an executable file into the specific path of the affected product, an attacker can exploit this vulnerability and gain unrestricted access to the system. This issue poses a significant risk to organizations and individuals using the vulnerable product, as it enables attackers to bypass normal security protocols and make unauthorized modifications or gains. It is strongly recommended that users install the necessary patches or updates to mitigate this vulnerability as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share