CVE-2024-55662
CVSS 3.1 Score 9.9 of 10 (high)
Details
Published Dec 12, 2024
Updated: Dec 13, 2024
CWE ID 96
CWE ID 863
Summary
CVE-2024-55662 is a vulnerability affecting the XWiki Platform, a popular wiki solution. Versions 3.3-milestone-1 and earlier, including 15.10.8 and 16.3.0, are susceptible to this issue when the `Extension Repository Application` is installed. This weakness allows any user to execute arbitrary code requiring programming rights on the server. However, it's important to note that disabling this application or applying specific patches can mitigate the risk. The vulnerability has been addressed in XWiki versions 15.10.9 and 16.3.0.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share