CVE-2024-1470
CVSS 3.1 Score 7.1 of 10 (high)
Details
Published Feb 29, 2024
CWE ID 639
Summary
CVE-2024-1470 is a newly disclosed vulnerability affecting the NetIQ (OpenText) Client Login Extension on Windows. This issue involves an Authorization Bypass through a User-Controlled Key, allowing an attacker to bypass security restrictions and potentially gain privilege escalation and code injection capabilities. Notably, this vulnerability only impacts the NetIQ Client Login Extension version 4.6. Successful exploitation could lead to significant security consequences.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share