CVE-2024-56087

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Published Dec 16, 2024

CWE ID 77

Summary

CVE-2024-56087 is a newly identified vulnerability affecting Logpoint before version 7.5.0. This issue permits authenticated users to inject payloads while querying the Search Template Dashboard. Consequently, these payloads are executed, resulting in Server-Side Template Injection, which poses a significant security risk to the affected system. Attackers can leverage this vulnerability to execute arbitrary commands or gain unauthorized access to sensitive information. Users are advised to upgrade to the latest version of Logpoint to mitigate this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1ovPXl
https://www.cve.org/CVERecord?id=CVE-2024-56087
https://nvd.nist.gov/vuln/detail/CVE-2024-56087

Back to Vulnerability Database

CVE-2024-56087

CVSS 3.1 Score 5.9 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations