CVE-2024-53472
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Dec 5, 2024
Updated: Dec 11, 2024
CWE ID 352
Summary
CVE-2024-53472 is a newly discovered vulnerability affecting WeGIA version 3.2.0. This issue allows an attacker to perform unauthorized actions on a user's session through a Cross-Site Request Forgery (CSRF) attack. The CSRF vulnerability enables an adversary to trick the user into making unwanted requests, potentially leading to data theft or unintended changes to the application's state. Successful exploitation of this vulnerability requires the attacker to manipulate the user into visiting a malicious website or clicking on a specially crafted link.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share