CVSS 3.1 Score 7.6 of 10 (high)


Published Apr 22, 2024
CWE ID 352


CVE-2024-32693 is a Cross-Site Request Forgery (CSRF) vulnerability that affects ValvePress Automatic before version 3.93.0. The vulnerability has a base severity rating of HIGH, with an overall base score of 7.6 according to the CVSS:3.1 scoring system. It requires user interaction and can be exploited over a network. The impact of this vulnerability includes high integrity impact and low confidentiality impact. The potential danger posed by this vulnerability is that an attacker could trick users into performing unintended actions on the affected ValvePress Automatic application. To remediate this vulnerability, it is recommended to update ValvePress Automatic to version 3.93.0 or later versions to address the CSRF vulnerability and enhance security measures within the organization.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-32693 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options