CVE-2024-52555

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Nov 15, 2024

CWE ID 349

Summary

CVE-2024-52555 is a newly disclosed vulnerability affecting JetBrains WebStorm before version 2024.3. This issue permits code execution in Untrusted Project mode, enabling attackers to install type definitions via a malicious installer script. Successful exploitation of this vulnerability could lead to significant security risks, such as unauthorized system access or data theft. Users are strongly advised to update to the latest version of WebStorm to mitigate this threat. Failure to do so may expose systems to potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Webstorm

Affected Vendors

JetBrains

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/0gaWS_
https://www.cve.org/CVERecord?id=CVE-2024-52555
https://nvd.nist.gov/vuln/detail/CVE-2024-52555

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners