CVE-2024-7728
CVSS 3.1 Score 7.2 of 10 (high)
Details
Summary
CVE-2024-7728 is a vulnerability affecting the CGI of CAYIN Technology's Content Management System. This issue allows an attacker with administrator privileges to inject OS commands into a specific parameter, enabling them to execute arbitrary commands on the affected server remotely. The vulnerability arises due to insufficient input validation in the CGI software. This security weakness could lead to significant security risks, including unauthorized access, data theft, or server compromise. It is recommended that users update their CMS software to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.