CVE-2024-51548

CVSS 3.1 Score 9.9 of 10 (high)

Details

Published Dec 5, 2024
CWE ID 434

Summary

CVE-2024-51548 is a newly disclosed file upload vulnerability that poses a significant risk, allowing malicious scripts to be uploaded onto ABB ASPECT - Enterprise v3.08.02, NEXUS Series v3.08.02, and MATRIX Series v3.08.02 systems. Successful exploitation of this weakness could result in unauthorized access, data theft, or system takeover. Cybercriminals can take advantage of this vulnerability to inject malicious code, potentially leading to devastating consequences. Users of the affected solutions are urged to apply patches as soon as they become available to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Aspect-Enterprise

Affected Vendors

  • ABB Ltd.