CVE-2024-22096

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Feb 2, 2024

Updated: Feb 7, 2024

CWE ID 23

CWE ID 22

Summary

CVE-2024-22096 is a path traversal vulnerability affecting Rapid Software LLC's Rapid SCADA software before Version 5.8.4. An attacker can manipulate a specific command by appending path traversal characters, thereby allowing unauthorized access to read arbitrary files on the system. This vulnerability poses a significant risk to industrial control systems, and affected organizations are advised to update their software as soon as possible to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uCwC4g
https://www.cve.org/CVERecord?id=CVE-2024-22096
https://nvd.nist.gov/vuln/detail/CVE-2024-22096

Back to Vulnerability Database

CVE-2024-22096

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations