How severe is CVE-2024-2007?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.3 out of 10.

What type of vulnerability is CVE-2024-2007?

This is classified as CWE-265, which is a common weakness in software security.

CVE-2024-2007

MEDIUM Year: 2024

CVSS v3 Score

5.3

Medium

CVSS v2 Score

4.3

Medium

Weakness Type

CWE-265

View all →

Vulnerability Description

A vulnerability was found in OpenBMB XAgent 1.0.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component Privileged Mode. The manipulation leads to sandbox issue. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. The identifier VDB-255265 was assigned to this vulnerability.

CVE-2020-1889

CRITICAL

CVSS:10.0(Critical)

A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron and escalation of privilege if combined with a remote code execution v...

CWE-2652020

CVE-2023-26122

CRITICAL

CVSS:10.0(Critical)

All versions of the package safe-eval are vulnerable to Sandbox Bypass due to improper input sanitization. The vulnerability is derived from prototype pollution exploitation. Exploiting this vulnerabi...

CWE-2652023

CVE-2023-5223

CRITICAL

CVSS:9.9(Critical)

A vulnerability, which was classified as critical, has been found in HimitZH HOJ up to 4.6-9a65e3f. This issue affects some unknown processing of the component Topic Handler. The manipulation leads to...

CWE-2652023

CVE-2024-2007

Vulnerability Description

Related Vulnerabilities

CVE-2020-1889

CVE-2023-26122

CVE-2023-5223