CVE-2024-6833
CVSS 3.1 Score 5.9 of 10 (medium)
Details
Summary
CVE-2024-6833 is a newly identified vulnerability affecting Zowe CLI. This issue permits local, privileged users to save previously entered secure credentials in a plaintext file during an auto-init operation. The implications of this vulnerability are significant, as plaintext files are easily accessible and can be read by any user with access to the file system. This weakness poses a serious risk, as it can lead to unauthorized access to protected systems and data. It is recommended that users apply the necessary patches or updates to mitigate this vulnerability as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.