CVE-2024-4592

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published May 7, 2024

CWE ID 352

Summary

CVE-2024-4592 is a vulnerability found in DedeCMS 5.7. It affects the code of the file /src/dede/sys_group_edit.php, leading to cross-site request forgery. The attack can be initiated remotely, and the exploit has been publicly disclosed. The vendor was informed but did not respond. This vulnerability has a CVSS score of 5.0, indicating a medium risk level. Remediation measures have not been mentioned in the provided information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vzgMnt
https://www.cve.org/CVERecord?id=CVE-2024-4592
https://nvd.nist.gov/vuln/detail/CVE-2024-4592

Back to Vulnerability Database

CVE-2024-4592

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations