CVE-2024-52443

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 502

Summary

CVE-2024-52443 is a Deserialization of Untrusted Data vulnerability affecting the Nerijus Masikonis Geolocator software. This issue allows Object Injection, meaning an attacker can provide malicious data during the deserialization process and execute unintended code. The vulnerability spans from an unspecified version up to and including version 1.1. This weakness could potentially lead to serious security consequences, including system compromise and data theft, making it important for users to apply the necessary patches or upgrades as soon as they become available.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0a1w5_
https://www.cve.org/CVERecord?id=CVE-2024-52443
https://nvd.nist.gov/vuln/detail/CVE-2024-52443

Back to Vulnerability Database

CVE-2024-52443

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations