CVE-2024-53718

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Dec 2, 2024
CWE ID 352

Summary

CVE-2024-53718 is a newly disclosed Cross-Site Request Forgery (CSRF) vulnerability that affects the Multi Feed Reader application, from an undisclosed version up to 2.2.4. An attacker could exploit this issue to perform a Stored Cross-Site Scripting (XSS) attack against an unsuspecting user. By manipulating data within the application, the attacker could inject malicious scripts that would execute in the user's browser, potentially leading to unauthorized access or data theft. Users are advised to update their Multi Feed Reader applications to the latest available version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share