CVE-2024-1654
Published Mar 14, 2024
Last updated 8 months ago
Overview
- Description
- This vulnerability potentially allows unauthorized write operations which may lead to remote code execution. An attacker must already have authenticated admin access and knowledge of both an internal system identifier and details of another valid user to exploit this.
- Source
- eb41dac7-0af8-4f84-9f6d-0272772514f4
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 7.2
- Impact score
- 5.9
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
Weaknesses
- eb41dac7-0af8-4f84-9f6d-0272772514f4
- CWE-183
Social media
- Hype score
- Not currently trending