CVE-2024-47531

CVSS 3.1 Score 3.5 of 10 (low)

Details

Published Sep 30, 2024

Updated: Nov 15, 2024

CWE ID 116

Summary

CVE-2024-47531 is a vulnerability affecting Scout, a web-based VCF-file visualizer. The issue arises from the lack of filename sanitization, enabling users to bypass intended file extensions and download malicious files with any extension. Malicious content embedded in the file data can lead to device or data compromise if users unknowingly download and open these files. The vulnerability is resolved in version 4.89.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Clinical-genomics Scout

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/y_DLiZ
https://www.cve.org/CVERecord?id=CVE-2024-47531
https://nvd.nist.gov/vuln/detail/CVE-2024-47531

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-47531

CVSS 3.1 Score 3.5 of 10 (low)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations