CVE-2024-40583

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Dec 9, 2024
Updated: Dec 11, 2024
CWE ID 522

Summary

CVE-2024-40583 is a newly disclosed vulnerability affecting Pentaminds CuroVMS version 2.0.1. This issue involves the exposure of credentials within the system, potentially allowing unauthorized access to sensitive information or unauthorized system control. The exact nature of the exposure is not clear, but it is advised that users of this version upgrade to a patched release as soon as possible to mitigate the risk. Failure to do so may result in serious security consequences for affected organizations.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share