CVE-2024-25913
CVSS 3.1 Score 10.0 of 10 (high)
Details
Summary
CVE-2024-25913 is a newly identified vulnerability affecting the MoveTo software from Skymoonlabs. This issue involves an Unrestricted File Upload vulnerability, allowing attackers to upload dangerous file types that could result in security breaches or system compromises. The vulnerability affects all versions of MoveTo from 1 through 6.2 and poses a significant risk for organizations using this software. Successful exploitation could allow attackers to gain unauthorized access, leading to potential data theft or other malicious activities. It is recommended that users of MoveTo upgrade to the latest version, or consider alternative solutions, to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions