CVE-2024-51367

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 21, 2024
Updated: Nov 27, 2024
CWE ID 94

Summary

CVE-2024-51367 is a newly discovered vulnerability affecting BlackBoard v2.0.0.2. The issue involves an arbitrary file upload vulnerability in the \\Users\\username.BlackBoard component. By uploading a specially crafted .xml file, attackers can execute arbitrary code, potentially leading to significant security risks. This flaw may allow unauthorized access, data breaches, or even system takeovers, making it a serious concern for organizations using the affected BlackBoard version. It is recommended that users upgrade to the latest version or apply appropriate patches as soon as possible to mitigate the risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share