CVE-2024-4301

Summary

CVE-2024-4301 is a vulnerability that affects N-Reporter and N-Cloud, products of N-Partner. It is classified as an OS Command Injection vulnerability, allowing remote attackers with normal user privilege to execute arbitrary system commands by manipulating user inputs on a specific page. The risk score for this vulnerability is 65, indicating a high level of severity. The base severity score is 8.8, with high impacts on integrity and confidentiality. The exploitability score is 2.8, suggesting it is relatively easy for attackers to exploit. The attack vector is network-based, and no user interaction is required. The potential danger this vulnerability poses to organizations includes unauthorized command execution and potential compromise of sensitive data. It is important for affected organizations to apply remediation measures promptly to mitigate the risk associated with this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.