Remote Code Execution Vulnerability in Logpoint's EventHub Collector
CVE-2024-48954
Currently unrated
What is CVE-2024-48954?
A vulnerability exists in Logpoint's EventHub Collector that allows an authenticated user to send unvalidated input during setup. This can lead to remote code execution, enabling malicious actors to execute arbitrary commands on the server. Organizations using Logpoint versions prior to 7.5.0 should be aware of this risk and follow best practices for security updates and input validation.