CVE-2024-2134

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Mar 3, 2024

Updated: May 17, 2024

CWE ID 122

Summary

CVE-2024-2134 is a newly disclosed vulnerability affecting Bdtask Hospita AutoManager up to version 20240223. This issue is classified as problematic due to the unknown code in the /investigation/delete/ component of the Investigation Report Handler being exploited. The vulnerability results in cross-site request forgery, allowing attacks to be initiated remotely. The exploit has been made public, increasing the risk of potential exploitation. The identifier for this vulnerability is VDB-255496. Unfortunately, the vendor has not responded to disclosure efforts.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ugaRL6
https://www.cve.org/CVERecord?id=CVE-2024-2134
https://nvd.nist.gov/vuln/detail/CVE-2024-2134

Back to Vulnerability Database

CVE-2024-2134

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations