CVE-2024-24797

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 12, 2024
CWE ID 502

Summary

CVE-2024-24797 is a Deserialization of Untrusted Data vulnerability affecting the G5Theme ERE Recently Viewed – Essential Real Estate Add-On. Versions from n/a to 1.3 are susceptible to this issue. Attackers can exploit this flaw by supplying malicious data for deserialization, potentially leading to code execution or unauthorized access. This vulnerability poses a serious risk to websites using the affected add-on and should be addressed promptly through updating to a patched version.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share