CVE-2024-33553

CVSS 3.1 Score 9.0 of 10 (high)

Details

Published Apr 29, 2024

CWE ID 502

Summary

CVE-2024-33553 is a Deserialization of Untrusted Data vulnerability affecting the 8theme XStore Core. The issue, which impacts versions from n/a to 5.3.5, allows an attacker to exploit untrusted data during the deserialization process, potentially leading to arbitrary code execution or denial of service. Successful exploitation could result in significant security risks, including unauthorized access or system crashes. It is recommended that users of XStore Core update to the latest patch as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vlKNJW
https://www.cve.org/CVERecord?id=CVE-2024-33553
https://nvd.nist.gov/vuln/detail/CVE-2024-33553

Back to Vulnerability Database

CVE-2024-33553

CVSS 3.1 Score 9.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations