CVE-2024-47558

Summary

CVE-2024-47558 is a high-severity vulnerability that allows authenticated remote code execution (RCE) via path traversal, affecting several Xerox FreeFlow Core products. The vulnerability requires high privileges and can be exploited without user interaction by an attacker on an adjacent network, posing significant risks to confidentiality, integrity, and availability. Remediation measures include applying patches provided in the Xerox Security Bulletin (XRX24-014), which details steps for securing affected systems. Organizations utilizing the impacted software should prioritize addressing this vulnerability to mitigate potential exploitation. The CVSS score for this vulnerability is 7.6, indicating a serious threat level that necessitates immediate attention.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.