CVE-2024-45166

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 22, 2024
CWE ID 400

Summary

CVE-2024-45166 is a critical vulnerability affecting UCI IDOL 2 (versions up to 2.12), which results from improper input validation, deserialization issues, and memory buffer operations. This vulnerability can lead to Denial-of-Service (DoS) attacks and potentially allow remote code execution, with significant integrity and confidentiality impacts. The affected products include models such as x4-eQ9, x4-eQ8, x4-eQ5, and others in the same series. To remediate this issue, organizations should ensure they are using an updated version of the software that addresses these vulnerabilities. The ease of exploitation via network access makes this vulnerability particularly dangerous for organizations relying on IDOL 2 for their operations.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share