CVE-2024-51723
CVSS 3.1 Score 4.6 of 10 (medium)
Details
Summary
CVE-2024-51723 is a Stored Cross-Site Scripting (XSS) vulnerability identified in BlackBerry AtHoc version 7.15. An attacker who successfully exploits this weakness can inject malicious scripts into the Management Console. Upon execution, these scripts can run with the privileges of the affected user, potentially leading to unauthorized session actions. This issue poses a significant risk, as it enables attackers to gain control over the targeted user's session, bypassing authentication and access controls. It is strongly recommended that users of BlackBerry AtHoc version 7.15 upgrade to a secure and patched version as soon as possible to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- BlackBerry AtHoc
Affected Vendors
- BlackBerry