CVE-2024-55215

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 7, 2025

Updated: Feb 8, 2025

CWE ID 269

Summary

CVE-2024-55215 is a privilege escalation vulnerability affecting trojan versions 2.0.0 through 2.15.3. An attacker can exploit this issue by targeting the /auth/register initialization interface. Successful exploitation grants the attacker elevated privileges, allowing them to gain unauthorized access and potentially cause significant damage to the affected system. This vulnerability poses a serious security risk and requires immediate attention from system administrators to apply the necessary patches or workarounds.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1T00HE
https://www.cve.org/CVERecord?id=CVE-2024-55215
https://nvd.nist.gov/vuln/detail/CVE-2024-55215

Back to Vulnerability Database

CVE-2024-55215

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations