CVE-2024-25933

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 17, 2024
CWE ID 200

Summary

CVE-2024-25933 is a vulnerability affecting PeproDev Ultimate Invoice versions 1.9.7 and prior. The issue involves the exposure of sensitive information to unauthorized actors. This vulnerability allows an attacker to gain access to confidential data, potentially leading to financial loss or data breaches. The specific nature of the sensitive information and the methods of exploitation are not detailed, but affected users are urged to update to the latest version of the software to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share