CVE-2024-32129

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Published Apr 15, 2024

Updated: Apr 29, 2024

CWE ID 601

Summary

CVE-2024-32129 is a newly disclosed vulnerability affecting Freshdesk (official), a customer support platform. The issue involves an Open Redirect vulnerability, which allows an attacker to redirect users to malicious websites. This vulnerability exists in Freshdesk versions from n/a to 2.3.6, potentially putting numerous organizations at risk. Successful exploitation could lead to phishing, data theft, or other malicious activities. Users are strongly urged to update to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vVe3jH
https://www.cve.org/CVERecord?id=CVE-2024-32129
https://nvd.nist.gov/vuln/detail/CVE-2024-32129

Back to Vulnerability Database

CVE-2024-32129

CVSS 3.1 Score 4.7 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations