CVE-2024-49795

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Feb 6, 2025

Updated: Feb 12, 2025

CWE ID 352

Summary

CVE-2024-49795 is a newly disclosed vulnerability affecting IBM ApplinX 11.1. This issue permits an attacker to perform cross-site request forgeries, enabling them to execute unauthorized actions on a website that trusts the user making the request. The attacker can manipulate a victim's browser into submitting malicious requests, potentially leading to data theft, privilege escalation, or other malicious activities. It is crucial for IBM ApplinX 11.1 users to update their systems promptly to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/zraaPF
https://www.cve.org/CVERecord?id=CVE-2024-49795
https://nvd.nist.gov/vuln/detail/CVE-2024-49795

Back to Vulnerability Database

CVE-2024-49795

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations