CVE-2024-45385

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Jan 14, 2025
CWE ID 79

Summary

CVE-2024-45385 is a newly discovered vulnerability affecting all versions of Industrial Edge Management OS (IEM-OS). The issue involves reflected cross-site scripting (XSS) in certain components, making them susceptible to attacks. An attacker can exploit this weakness by creating malicious links and deceiving users into accessing them. Successful attacks could potentially enable the extraction of sensitive information. Industrial organizations using IEM-OS are advised to apply patches or updates as soon as they become available to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share