CVE-2024-23513

CVSS 3.1 Score 8.7 of 10 (high)

Details

Published Feb 12, 2024

CWE ID 502

Summary

CVE-2024-23513 is a deserialization vulnerability affecting PropertyHive from an undisclosed version up to and including 2.0.5. An attacker can exploit this issue by providing untrusted data for deserialization, which may result in arbitrary code execution or denial of service. PropertyHive users are advised to apply the necessary patches as soon as possible to mitigate this risk. Deserialization vulnerabilities can pose a serious threat to applications that accept external data without proper validation, potentially leading to security breaches or system crashes.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uLnbFu
https://www.cve.org/CVERecord?id=CVE-2024-23513
https://nvd.nist.gov/vuln/detail/CVE-2024-23513

Back to Vulnerability Database

CVE-2024-23513

CVSS 3.1 Score 8.7 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations