CVE-2024-44765

Currently unrated 🤨

Key Information

Vendor: CVE Published:; 8 November 2024

Badges

👾 Exploit Exists🔴 Public PoC

Summary

An Improper Authorization (Access Control Misconfiguration) vulnerability in MGT-COMMERCE GmbH CloudPanel v2.0.0 to v2.4.2 allows low-privilege users to bypass access controls and gain unauthorized access to sensitive configuration files and administrative functionality.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-44765
Created by josephgodwinkimani

Refferences

http://mgt-commerce.com

https://github.com/EagleTube/CloudPanel/tree/main/CVE-202...

Timeline

🔴
Public PoC available
Dec 17, 2024
👾
Exploit known to exist
Dec 17, 2024
Vulnerability published
Nov 8, 2024
Vulnerability Reserved
Aug 21, 2024

Collectors

NVD DatabaseMitre Database1 Proof of Concept(s)