CVE-2024-45385
CVSS 3.1 Score 4.7 of 10 (medium)
Details
Published Jan 14, 2025
CWE ID 79
Summary
CVE-2024-45385 is a newly discovered vulnerability affecting all versions of Industrial Edge Management OS (IEM-OS). The issue involves reflected cross-site scripting (XSS) in certain components, making them susceptible to attacks. An attacker can exploit this weakness by creating malicious links and deceiving users into accessing them. Successful attacks could potentially enable the extraction of sensitive information. Industrial organizations using IEM-OS are advised to apply patches or updates as soon as they become available to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share