CVE-2024-42467

Summary

CVE-2024-42467 is a vulnerability affecting the openHAB home automation software's CometVisu add-on. Prior to version 4.2.1, the add-on's CometVisu proxy endpoint was accessible without authentication. Malicious actors could exploit this Server-Side Request Forgery (SSRF) vulnerability by inducing GET HTTP requests to internal-only servers, potentially leading to Remote Code Execution (RCE) when chained with other vulnerabilities. The same proxy-feature can also function as a Cross-Site Scripting (XSS) vulnerability. An attacker could re-route a request to their server and return malicious JavaScript code, which would be executed with the origin of the CometVisu UI in the browser. Users are advised to upgrade to version 4.2.1 to mitigate these risks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.