CVE-2024-3507

CVSS 3.1 Score 7.7 of 10 (high)

Details

Published May 8, 2024

Updated: May 9, 2024

CWE ID 269

Summary

CVE-2024-3507 is an improper privilege management vulnerability identified in Lunar software versions 6.0.2 through 6.6.0. An attacker can exploit this weakness to inject a secondary process into the Lunar application, thereby gaining unauthorized access to sensitive user data. This issue can potentially lead to significant data breaches and should be addressed promptly through software updates or patches. Organizations using affected versions of Lunar software are advised to prioritize security measures and implement access control best practices to minimize potential risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v0zrTS
https://www.cve.org/CVERecord?id=CVE-2024-3507
https://nvd.nist.gov/vuln/detail/CVE-2024-3507

Back to Vulnerability Database

CVE-2024-3507

CVSS 3.1 Score 7.7 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations