CVE-2024-56009

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Dec 16, 2024

CWE ID 862

Summary

CVE-2024-56009 is a Missing Authorization vulnerability affecting Spreadr Woocommerce, where functionality is not properly constrained by Access Control Lists (ACLs). This issue enables unauthorized access to certain features in Spreadr Woocommerce versions ranging from n/a to 1.0.4. An attacker can exploit this vulnerability to gain unauthorized access and potentially disrupt the targeted system or steal sensitive data. It is crucial for users of these affected versions to update to a patched version as soon as possible to prevent potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1lpNIU
https://www.cve.org/CVERecord?id=CVE-2024-56009
https://nvd.nist.gov/vuln/detail/CVE-2024-56009

Back to Vulnerability Database

CVE-2024-56009

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations