CVE-2024-21749

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 28, 2024

Updated: Feb 29, 2024

CWE ID 352

Summary

CVE-2024-21749 is a Cross-Site Request Forgery (CSRF) vulnerability affecting the Atakan Au 1 click disable all software. This issue allows an attacker to trick a user into making unintended actions on a web application, by forging a malicious request on their behalf. The vulnerability can impact any user of the Atakan Au 1 click disable all software from an unknown version through 1.0.1. Successful exploitation could lead to unauthorized changes or actions within the application. It is recommended that users update to the latest version of the software to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/t_vYqI
https://www.cve.org/CVERecord?id=CVE-2024-21749
https://nvd.nist.gov/vuln/detail/CVE-2024-21749

Back to Vulnerability Database

CVE-2024-21749

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations