Remote Code Execution Vulnerability Discovered in REDAXO CMS v2.11.0
CVE-2024-46213

7.2HIGH

Key Information:

Vendor: REDAXO
Status: Redaxo
Vendor: CVE Published:; 16 October 2024

What is CVE-2024-46213?

REDAXO CMS v2.11.0 is susceptible to a remote code execution vulnerability that could allow attackers to execute arbitrary code on the server. This issue arises from improper validation and handling of inputs, potentially exposing sensitive data or enabling further exploitation. It is vital for users of this version to apply patches or update to a secure version to mitigate associated risks.

References

https://github.com/Purposex7/Vulns4Study/blob/main/REDAXO...

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 16, 2024

CVE-2024-46213 Data

JSON