CVE-2024-52443
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Nov 20, 2024
Updated: Nov 21, 2024
CWE ID 502
Summary
CVE-2024-52443 is a deserialization vulnerability affecting Nerijus Masikonis Geolocator, specifically versions from none to 1.1. An attacker can exploit this issue by injecting malicious objects, leading to potential code execution and security breaches. The vulnerability arises due to the application's failure to properly validate and deserialize untrusted data. This weakness poses a serious risk to users, making it essential to update affected installations as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share