CVE-2024-28003
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Published Mar 28, 2024
CWE ID 862
Summary
CVE-2024-28003 is a critical vulnerability affecting Max Mega Menu versions from n/a to 3.3. It involves a Missing Authorization issue, meaning unauthorized users may gain access to restricted functionalities or data. This defect could lead to significant security risks, such as unauthorized modifications, unintended data access, or even complete system takeover. End-users are advised to update their Max Mega Menu plugins as soon as possible to mitigate this threat.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share