CVE-2024-23049

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 5, 2024

Updated: Feb 12, 2024

CWE ID 77

Summary

CVE-2024-23049 is a newly identified cybersecurity vulnerability affecting symphony version 3.6.3 and older. This issue allows remote attackers to exploit the log4j component, enabling the execution of arbitrary code. Successful exploitation could result in unauthorized system access, data theft, or other malicious activities. It is essential that affected organizations apply the necessary patches to mitigate this risk and prevent potential attacks. Failure to do so could lead to significant security breaches and potential damage to business operations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uG3WQp
https://www.cve.org/CVERecord?id=CVE-2024-23049
https://nvd.nist.gov/vuln/detail/CVE-2024-23049

Back to Vulnerability Database

CVE-2024-23049

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations