CVE-2024-8779

Summary

CVE-2024-8779 identifies a vulnerability in OMFLOW from The SYSCOM Group that allows unauthorized remote attackers with low privileges to modify system settings and create accounts with administrative rights. Affected products include yonWmI, yonWmH, and yoK7B4. If exploited, this vulnerability poses a high risk to organizations by potentially granting attackers full control over the server, leading to significant integrity and confidentiality impacts. To remediate this issue, it is essential for organizations to implement strict access controls and apply any available patches or updates provided by the vendor. The vulnerability has an exploitability score of 2.8 and a base severity rating of high (8.8), indicating a substantial threat that requires immediate attention.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.