CVE-2024-28003

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Mar 28, 2024
CWE ID 862

Summary

CVE-2024-28003 is a critical vulnerability affecting Max Mega Menu versions from n/a to 3.3. It involves a Missing Authorization issue, meaning unauthorized users may gain access to restricted functionalities or data. This defect could lead to significant security risks, such as unauthorized modifications, unintended data access, or even complete system takeover. End-users are advised to update their Max Mega Menu plugins as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share