CVE-2024-48070

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 19, 2024
Updated: Nov 21, 2024
CWE ID 94

Summary

CVE-2024-48070 is a newly disclosed vulnerability that affects Weaver E-cology software. The weakness allows attackers to craft malicious requests, which can result in the injection of remote code and the execution of malicious code with server privileges. This issue poses a significant risk to systems running the affected software, as successful exploitation can lead to serious security breaches and unauthorized access. Organizations using Weaver E-cology are urged to apply the available patch or upgrade to a secure version as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share