CVE-2024-6744

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 15, 2024
Updated: Jul 16, 2024
CWE ID 787
CWE ID 121

Summary

CVE-2024-6744 is a newly identified vulnerability affecting the SMTP Listener component of Cellopoint's Secure Email Gateway. This issue stems from inadequate user input validation, allowing a remote, unauthenticated attacker to trigger a Buffer Overflow condition. Successful exploitation of this flaw permits the execution of arbitrary system commands on the targeted server. This poses a significant risk, as it enables an attacker to gain control over the system and potentially cause harm or steal sensitive data. Organizations using the affected product are urged to apply the necessary patches as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share