CVSS 3.1 Score 5.4 of 10 (medium)


Published Mar 28, 2024
CWE ID 502


CVE-2024-30221 is a vulnerability classified as "Deserialization of Untrusted Data" affecting Sunshine Photo Cart versions up to 3.1.1. The vulnerability allows for the exploitation of untrusted data during the deserialization process, posing a medium risk to organizations. With an exploitability score of 2.2 and a base severity of 5.4, it can be exploited remotely without requiring any privileges or user interaction. However, the impact on integrity and confidentiality is low, and it does not affect availability. Remediation measures should be taken promptly to mitigate the potential risks associated with this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-30221 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options