CVE-2024-54216
CVSS 3.1 Score 7.7 of 10 (high)
Details
Summary
CVE-2024-54216 is a newly discovered path traversal vulnerability affecting the ARForms software from Repute InfoSystems. This issue permits attackers to bypass file access restrictions and potentially gain unauthorized access to sensitive data. The vulnerability can be exploited by using a specially crafted file path, such as '.../../', to traverse directories outside of the intended location. ARForms versions from n/a up to 6.4.1 are reportedly susceptible to this issue. It is recommended that users update to a patched version as soon as available to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.