CVE-2024-56044

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 31, 2024

CWE ID 288

Summary

CVE-2024-56044 is a newly identified vulnerability that affects the WPLMS platform from versions n/a through 1.9.9. This issue involves an Authentication Bypass using an alternate path or channel, enabling unauthorized access to the system. An attacker can exploit this vulnerability to bypass the authentication process and gain administrative control, potentially leading to data theft or system damage. It is crucial for WPLMS users to apply the necessary security patches to mitigate this risk and protect their systems from potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

WP LMS

Affected Vendors

Proofpoint, Inc.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/1lpGw-
https://www.cve.org/CVERecord?id=CVE-2024-56044
https://nvd.nist.gov/vuln/detail/CVE-2024-56044

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Know What Matters

For Customers

For Partners