CVE-2024-5720
CVSS 3.0 Score 8.8 of 10 (high)
Details
Published Nov 22, 2024
CWE ID 78
Summary
CVE-2024-5720 is a command injection vulnerability affecting the Logsign Unified SecOps Platform. It enables remote code execution, allowing attackers to execute arbitrary code on impacted installations. Authentication is required to exploit this vulnerability, but the current authentication mechanism can be bypassed. The issue stems from the Logsign HTTP API, which lacks proper validation of user-supplied strings prior to executing system calls. An attacker can exploit this vulnerability to run code with root privileges. (ZDI-CAN-24168)
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share