CVE-2024-43153

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Aug 13, 2024

CWE ID 269

Summary

CVE-2024-43153 is an Improper Privilege Management vulnerability affecting Woffice, a software product from an unknown version up to 5.4.10. This issue grants attackers the ability to escalate privileges within the system, potentially leading to unauthorized access or system takeover. The precise nature of the vulnerability involves misconfigured access controls within Woffice, allowing users with lower privileges to gain elevated access. System administrators are strongly advised to apply the forthcoming patch or update as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xkOT5P
https://www.cve.org/CVERecord?id=CVE-2024-43153
https://nvd.nist.gov/vuln/detail/CVE-2024-43153

Back to Vulnerability Database

CVE-2024-43153

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations