CVE-2024-3783

CVSS 3.1 Score 6.1 of 10 (medium)

Details

Published Apr 15, 2024
CWE ID 601

Summary

CVE-2024-3783 is a newly disclosed vulnerability that impacts the Backup Agents section in WBSAirback version 21.02.04. This issue permits users with minimal privileges to execute a path traversal attack, enabling them to download sensitive files from the system. The vulnerability poses a significant risk, particularly in environments where access control is not strictly enforced. Organizations using WBSAirback are advised to apply the available patch as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share