Cleo software: JavaScript Injection and unrestricted file upload/download (CVE-2024-50623) #shorts

CVE

This CVE-2024-50623 describes a critical security vulnerability found in Cleo software, specifically affecting versions of Cleo Harmony, VLTrader, and LexiCom prior to 5.8.0.21. It includes two primary issues: a JavaScript Injection vulnerability and an unrestricted file upload and download weakness. When exploited, these vulnerabilities can allow attackers to remotely execute arbitrary code on affected systems. The JavaScript Injection flaw enables malicious scripts to be executed, potentially compromising sensitive information. The unrestricted file handling vulnerability could lead to unauthorized data access, manipulation, and further system exploitation. These vulnerabilities have been actively exploited in the wild, posing significant risks to organizations utilizing these Cleo software versions.

Watch the full video on YouTube: CVE-2024-50623

Remediation and exploitation details

This chain involves the following actors

This following systems are involved

Attack entry point

Remediation actions

Exploitation actions

Related Content

NOTE: The following related content has not been vetted and may be unsafe.

CVE database technical details

CVE ID
CVE-2024-50623
Description
In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file upload and download that could lead to remote code execution.
Provider
mitre
CWE / problem types
CWE-434 Unrestricted Upload of File with Dangerous Type
Affected Software Versions
n/a:n/a:[{'status': 'affected', 'version': 'n/a'}]
Date Published
2024-10-27T00:00:00
Last Updated
2024-12-23T06:22:00.892Z