CVE-2024-6426

CVSS 3.1 Score 7.1 of 10 (high)

Details

Published Jul 3, 2024

Updated: Jul 5, 2024

CWE ID 200

Summary

CVE-2024-6426 is an information exposure vulnerability affecting MESbook 20221021.03. This vulnerability enables a local attacker, who already holds user privileges, to manipulate the API value of the application and gain unauthorized access to various resources within the system. Successful exploitation could lead to significant data leakage or unintended functionality. Users are strongly advised to update their MESbook installations as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wwHErW
https://www.cve.org/CVERecord?id=CVE-2024-6426
https://nvd.nist.gov/vuln/detail/CVE-2024-6426

Back to Vulnerability Database

CVE-2024-6426

CVSS 3.1 Score 7.1 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations