CVE-2024-1104

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 22, 2024

CWE ID 307

Summary

CVE-2024-1104 is a newly identified vulnerability that poses a significant threat to webservices. An attacker without authentication can bypass the brute force prevention mechanism, enabling them to disrupt the service for all users. This vulnerability allows unauthorized access and potential disruption, making it crucial for organizations to apply relevant patches as soon as possible. The impact extends beyond the affected user, as the entire service can be rendered unavailable. Organizations must prioritize securing their webservices against this vulnerability to maintain business continuity and protect their digital assets.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uWUUbI
https://www.cve.org/CVERecord?id=CVE-2024-1104
https://nvd.nist.gov/vuln/detail/CVE-2024-1104

Back to Vulnerability Database

CVE-2024-1104

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations