CVE-2024-2602

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 11, 2024

Updated: Jul 12, 2024

CWE ID 200

Summary

CVE-2024-2602 is a newly disclosed cybersecurity vulnerability that falls under the Common Vulnerabilities and Exposures (CVE) list. This issue is classified as a Path Traversal vulnerability (CWE-22), which can lead to remote code execution. Authenticated users who open tampered project files are at risk of exploitation. A malicious actor can manipulate the file path to access restricted directories, potentially leading to the execution of malicious code. The vulnerability poses a significant security risk and requires immediate remediation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vl6N5d
https://www.cve.org/CVERecord?id=CVE-2024-2602
https://nvd.nist.gov/vuln/detail/CVE-2024-2602

Back to Vulnerability Database

CVE-2024-2602

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations