CVE-2024-21412

CVSS 3.1 Score 8.1 of 10 (high)

Details

Published Feb 13, 2024

Updated: Aug 14, 2024

CWE ID 693

Summary

CVE-2024-21412 is a newly disclosed vulnerability affecting Internet Shortcut files. Hackers can exploit this Security Feature Bypass issue to gain unauthorized access to sensitive information or execute malicious code. Users opening a specially crafted shortcut file may unknowingly expose their system to attack. This vulnerability underscores the importance of secure handling and verification of file types received from untrusted sources.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/ugc0a4
https://www.cve.org/CVERecord?id=CVE-2024-21412
https://nvd.nist.gov/vuln/detail/CVE-2024-21412

Back to Vulnerability Database

CVE-2024-21412

CVSS 3.1 Score 8.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations