CVE-2025-24716

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jan 24, 2025
CWE ID 352

Summary

CVE-2025-24716 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Herd Effects application from version n/a through 6.2.1. An attacker can exploit this issue by tricking a user into making unintended actions on the application. The CSRF attack occurs when an attacker induces a victim to perform an unwanted action on a web application, which the victim did not intend to do, but the request originated from the attacker. This vulnerability poses a serious security risk as it can lead to unauthorized data modification, account takeover, and other malicious activities. Users are strongly advised to update their Herd Effects installation to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share