CVE-2024-49249

CVSS 3.1 Score 8.6 of 10 (high)

Details

Published Jan 7, 2025
CWE ID 35

Summary

CVE-2024-49249 is a newly identified Path Traversal vulnerability that puts SMSA Shipping, from an unknown version up to 2.3, at risk. A malicious actor can exploit this issue to gain unauthorized access to restricted files or directories by manipulating the file path provided to the application. The consequence could range from data exposure to system compromise, emphasizing the importance of applying the necessary patches to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share