CVE-2024-27283

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Feb 22, 2024

CWE ID 434

Summary

CVE-2024-27283 is a newly disclosed vulnerability affecting the Veritas eDiscovery Platform before 10.2.5. This issue grants application administrators the ability to upload malicious files to arbitrary locations on the server, posing a significant security risk. An attacker could exploit this vulnerability to execute unauthorized code and potentially gain unauthorized access, leading to data breaches or system compromise. It is crucial for organizations using the Veritas eDiscovery Platform to update to the latest version or implement appropriate security measures to mitigate the risk of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/um3lU8
https://www.cve.org/CVERecord?id=CVE-2024-27283
https://nvd.nist.gov/vuln/detail/CVE-2024-27283

Back to Vulnerability Database

CVE-2024-27283

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations