CVE-2024-7324

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 31, 2024

Updated: Aug 1, 2024

CWE ID 427

Summary

CVE-2024-7324 is a critical vulnerability affecting the IObit iTop Data Recovery Pro version 4.4.0.687. This issue lies within the unknown functionality of the library madbasic_.bpl in the BPL Handler component. It leads to an uncontrolled search path, allowing an attacker with local access to manipulate the system. The vulnerability identifier is VDB-273247, and the vendor has been notified but has yet to respond to the disclosure.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/xXnlZI
https://www.cve.org/CVERecord?id=CVE-2024-7324
https://nvd.nist.gov/vuln/detail/CVE-2024-7324

Back to Vulnerability Database

CVE-2024-7324

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations