CVE-2024-57608

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 24, 2025

Updated: Feb 25, 2025

CWE ID 77

Summary

CVE-2024-57608 is a newly disclosed vulnerability affecting Via Browser version 6.1.0. This issue enables remote attackers to execute arbitrary code through the mark.via.Shell component, posing a significant security risk. The vulnerability is located within the browser's shell component, which can be exploited to run malicious code on vulnerable systems. Successful exploitation could lead to unauthorized access, data theft, or system compromise. To mitigate this threat, users are advised to update to the latest version of Via Browser or apply relevant patches as soon as possible.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Browser

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2T9rOn
https://www.cve.org/CVERecord?id=CVE-2024-57608
https://nvd.nist.gov/vuln/detail/CVE-2024-57608

Back to Vulnerability Database

CVE-2024-57608

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations