CVE-2024-54181

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Dec 30, 2024

CWE ID 78

Summary

CVE-2024-54181 is a newly disclosed vulnerability affecting IBM WebSphere Automation version 1.7.5. A remote privileged user, granted access to the Swagger UI, can exploit this weakness to execute arbitrary code on the system. This issue poses a significant risk, as attackers could potentially gain full control of the vulnerable system and cause extensive damage. IBM has yet to release a patch for this vulnerability, leaving affected organizations vulnerable until a solution is made available. Organizations using IBM WebSphere Automation are urged to take immediate action to secure their systems and limit access to the Swagger UI as a precaution.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners

CVE-2024-54181

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations