CVE-2024-30376

CVSS 3.0 Score 7.3 of 10 (high)

Details

Published Nov 22, 2024
CWE ID 427

Summary

CVE-2024-30376 is a local privilege escalation vulnerability affecting Famatech Advanced IP Scanner. The issue lies in the application's handling of Qt plugins, which are loaded from an unsecured location. This allows an attacker, who has already gained the ability to execute low-privileged code on the target system, to escalate their privileges and run arbitrary code with administrator rights. The flaw, also known as ZDI-CAN-20768, poses a significant risk to affected installations.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share