CVE-2024-42006
CVSS 3.1 Score 7.5 of 10 (high)
Details
Published Aug 20, 2024
Summary
CVE-2024-42006 is a newly disclosed vulnerability affecting Keyfactor's AWS Orchestrator, specifically versions prior to 2.0. This issue grants unauthorized access to sensitive information through an inadequately secured feature. Attackers can exploit this vulnerability to obtain confidential data, potentially leading to significant data breaches or system compromises. Organizations utilizing the Keyfactor AWS Orchestrator are urged to upgrade to the latest version or apply appropriate patches to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Keyfactor