CVE ID
CVE-2024-55956
Vulnerability Name
Cleo Multiple Products Unauthenticated File Upload Vulnerability
- Project: Cleo
- Product: Multiple Products
Date
- Date Added: 2024-12-17
- Due Date: 2025-01-07
Description
Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload vulnerability that could allow an unauthenticated user to import and execute arbitrary bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Update-CVE-2024-55956 ; https://nvd.nist.gov/vuln/detail/CVE-2024-55956
Related Security News
- Harvard investigating breach linked to Oracle zero-day exploit
- Oracle patches EBS zero-day exploited in Clop data theft attacks
- Clop extortion emails claim theft of Oracle E-Business Suite data
- Emails claim Oracle data theft in new Clop-linked extortion campaign
- Google Reports 75 Zero-Days Exploited in 2024 — 44% Targeted Enterprise Security Products
- Food giant WK Kellogg discloses data breach linked to Clop ransomware
- Western Alliance Bank notifies 21,899 customers of data breach