CVE-2024-49402

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Published Nov 6, 2024

Updated: Nov 12, 2024

Summary

CVE-2024-49402 is a newly identified vulnerability affecting Dressroom, a software application. This issue involves improper input validation, which can be exploited by physical attackers. By taking advantage of this flaw, attackers can gain unauthorized access to data across multiple user profiles. This vulnerability has come to light prior to SMR Nov-2024 Release 1 and poses a significant risk to the confidentiality of user information. It is crucial for Dressroom users to apply the upcoming patch to mitigate this security concern.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/zghxBY
https://www.cve.org/CVERecord?id=CVE-2024-49402
https://nvd.nist.gov/vuln/detail/CVE-2024-49402

Back to Vulnerability Database

CVE-2024-49402

CVSS 3.1 Score 4.6 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations