CVE-2024-35171

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published May 14, 2024

CWE ID 200

Summary

CVE-2024-35171 is a vulnerability affecting Academy LMS versions 1.9.25 and prior. The issue involves the exposure of sensitive information to unauthorized actors. This vulnerability could potentially allow uninvited individuals to access confidential data within the Academy LMS system. The exact nature of the sensitive information and the methods used to exploit this vulnerability have not been disclosed. It is strongly recommended that Academy LMS users upgrade to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/v230xW
https://www.cve.org/CVERecord?id=CVE-2024-35171
https://nvd.nist.gov/vuln/detail/CVE-2024-35171

Back to Vulnerability Database

CVE-2024-35171

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations