CVE-2024-51723

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Nov 25, 2024
CWE ID 79

Summary

CVE-2024-51723 is a Stored Cross-Site Scripting (XSS) vulnerability identified in BlackBerry AtHoc version 7.15. An attacker who successfully exploits this weakness can inject malicious scripts into the Management Console. Upon execution, these scripts can run with the privileges of the affected user, potentially leading to unauthorized session actions. This issue poses a significant risk, as it enables attackers to gain control over the targeted user's session, bypassing authentication and access controls. It is strongly recommended that users of BlackBerry AtHoc version 7.15 upgrade to a secure and patched version as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • BlackBerry AtHoc

Affected Vendors

  • BlackBerry