CVE-2024-2951

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Published Mar 26, 2024

Updated: Mar 27, 2024

CWE ID 693

Summary

CVE-2024-2951 is a Cross-Site Request Forgery (CSRF) vulnerability affecting Metagauss RegistrationMagic. This issue allows malicious actors to manipulate a user's session, making unauthorized changes to their account. The vulnerability exists in RegistrationMagic versions from n/a to 5.3.0.0. Successful exploitation could result in account takeover or data theft. Users are strongly advised to update to the latest version of RegistrationMagic to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vJGJTO
https://www.cve.org/CVERecord?id=CVE-2024-2951
https://nvd.nist.gov/vuln/detail/CVE-2024-2951

Back to Vulnerability Database

CVE-2024-2951

CVSS 3.1 Score 6.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations