CVE-2024-4301

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Apr 29, 2024
CWE ID 78

Summary

CVE-2024-4301 is a vulnerability that affects N-Reporter and N-Cloud, products of N-Partner. It is classified as an OS Command Injection vulnerability, allowing remote attackers with normal user privilege to execute arbitrary system commands by manipulating user inputs on a specific page. The risk score for this vulnerability is 65, indicating a high level of severity. The base severity score is 8.8, with high impacts on integrity and confidentiality. The exploitability score is 2.8, suggesting it is relatively easy for attackers to exploit. The attack vector is network-based, and no user interaction is required. The potential danger this vulnerability poses to organizations includes unauthorized command execution and potential compromise of sensitive data. It is important for affected organizations to apply remediation measures promptly to mitigate the risk associated with this vulnerability.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-4301 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options