CVSS 3.1 Score 9.1 of 10 (high)


Published Apr 24, 2024
CWE ID 434


CVE-2024-32954 is a vulnerability known as "Unrestricted Upload of File with Dangerous Type" in the Tribulant Newsletters plugin, affecting versions from n/a through 4.9.5. The vulnerability has a base severity of CRITICAL with a CVSS score of 9.1, indicating a high threat level. Exploiting this vulnerability requires high privileges and can be done remotely over the network without any user interaction. It has a significant impact on both integrity and confidentiality, posing a potential danger to organizations using the affected plugin. No remediation information or specific details on the danger it poses are provided in the given text.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-32954 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options