CVE-2024-54124

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 29, 2024
CWE ID 863

Summary

CVE-2024-54124 is a new permission escalation vulnerability affecting Click Studios' Passwordstate before version 9920. This issue grants elevated privileges on the edit folder screen, potentially allowing attackers to gain unauthorized access to sensitive data or make unintended modifications. Successful exploitation of this vulnerability could lead to significant security risks for organizations using the Passwordstate solution. It is recommended that users upgrade to the latest version of Passwordstate as soon as possible to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Passwordstate

Affected Vendors

  • Click Studios (SA) Pty Ltd