CVE-2024-53442
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 5, 2024
Updated: Dec 11, 2024
CWE ID 79
Summary
CVE-2024-53442 is a newly identified vulnerability affecting the whapa version 1.59. Hackers can exploit this issue by crafting malicious filenames for the HTML reports component, leading to command injection attacks. Successful exploitation allows attackers to execute arbitrary system commands and potentially gain unauthorized access to the system. It is strongly recommended that users upgrade to the latest version of whapa to mitigate this risk. Failure to do so may result in serious security consequences.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share