CVE-2024-6742

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Jul 15, 2024

Updated: Jul 16, 2024

CWE ID 79

Summary

CVE-2024-6742 is a new vulnerability affecting AguardNet Technology's Space Management System. This issue arises from the system's failure to adequately filter user inputs, rendering it susceptible to Reflected Cross-site scripting (XSS) attacks. Attackers with regular privileges can exploit this weakness by injecting malicious JavaScript code, potentially gaining unauthorized access to user data or taking control of the affected system. The vulnerability poses a significant risk to organizations using the Space Management System and requires immediate attention and remediation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xBfkhE
https://www.cve.org/CVERecord?id=CVE-2024-6742
https://nvd.nist.gov/vuln/detail/CVE-2024-6742

Back to Vulnerability Database

CVE-2024-6742

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations