CVE-2024-54297

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 13, 2024
CWE ID 288

Summary

CVE-2024-54297: A critical Authentication Bypass vulnerability has been identified in the vBSSO-lite software used on www.vbsso.com. This issue enables unauthorized access by exploiting an alternate path or channel, bypassing the standard authentication process. Affected versions range from n/a to 1.4.3, and it is crucial that users update to a patched version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share