VDB
CVE-2024-55956
CVE-2024-55956
PUBLISHED
KEV
CVSS 9.800000190734863 CRITICAL
In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
EPSS 89.14% · 99.5th percentile
Risk Scores
CVSS v3.1
9.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
89.14%
99.5th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cleo | lexicom | 0 |
| cleo | harmony | 0 |
| cleo | vltrader | 0 |
| n/a | n/a | n/a |
Timeline
- Dec 13, 2024 CVE Published
- Dec 13, 2024 PoC Published
- Dec 14, 2024 EPSS Score
- Dec 15, 2024 PoC Published
- Dec 15, 2024 PoC Published
- Dec 15, 2024 PoC Published
- Dec 16, 2024 PoC Published
- Dec 16, 2024 PoC Published
- Dec 16, 2024 PoC Published
- Dec 16, 2024 PoC Published
- Dec 17, 2024 CISA KEV Added
- Dec 17, 2024 PoC Published
References
- https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Advisory-CVE-Pending url
- https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Update url
- https://www.huntress.com/blog/threat-advisory-oh-no-cleo-cleo-software-actively-being-exploited-in-the-wild url
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-55956 url
- https://nvd.nist.gov/vuln/detail/CVE-2024-55956 advisory