CVE-2024-48951

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Nov 7, 2024

Updated: Nov 8, 2024

CWE ID 918

Summary

CVE-2024-48951 is a newly identified vulnerability affecting Logpoint versions prior to 7.5.0. This issue permits Server-Side Request Forgery (SSRF) on the Security Orchestration, Automation, and Response (SOAR) feature. Successful exploitation of this SSRF vulnerability allows an attacker to leak the Logpoint API Token, enabling them to bypass authentication and gain unauthorized access to the system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zW1xoU
https://www.cve.org/CVERecord?id=CVE-2024-48951
https://nvd.nist.gov/vuln/detail/CVE-2024-48951

Back to Vulnerability Database

CVE-2024-48951

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations