CVE-2024-51367
CVSS 3.1 Score 9.8 of 10 (high)
Details
Summary
CVE-2024-51367 is a newly discovered vulnerability affecting BlackBoard v2.0.0.2. The issue involves an arbitrary file upload vulnerability in the \\Users\\username.BlackBoard component. By uploading a specially crafted .xml file, attackers can execute arbitrary code, potentially leading to significant security risks. This flaw may allow unauthorized access, data breaches, or even system takeovers, making it a serious concern for organizations using the affected BlackBoard version. It is recommended that users upgrade to the latest version or apply appropriate patches as soon as possible to mitigate the risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- Blackboard
Affected Vendors
- Blackboard Inc