How severe is CVE-2024-49120?

This vulnerability has a severity rating of HIGH with a CVSS score of 8.1 out of 10.

What type of vulnerability is CVE-2024-49120?

This is classified as CWE-453, which is a common weakness in software security.

CVE-2024-49120

HIGH Year: 2024

CVSS v3 Score

8.1

High

Weakness Type

CWE-453

View all →

Vulnerability Description

Windows Remote Desktop Services Remote Code Execution Vulnerability

CVE-2022-3262

HIGH

CVSS:8.1(High)

A flaw was found in Openshift. A pod with a DNSPolicy of "ClusterFirst" may incorrectly resolve the hostname based on a service provided. This flaw allows an attacker to supply an incorrect name with ...

CWE-4532022

CVE-2023-27516

HIGH

CVSS:7.8(High)

An authentication bypass vulnerability exists in the CiRpcAccepted() functionality of SoftEther VPN 4.41-9782-beta and 5.01.9674. A specially crafted network packet can lead to unauthorized access. An...

CWE-4532023

CVE-2024-41255

HIGH

CVSS:7.5(High)

filestash v0.4 is configured to skip TLS certificate verification when using the FTPS protocol, possibly allowing attackers to execute a man-in-the-middle attack via the Init function of index.go.

CWE-4532024

CVE-2024-21411

HIGH

CVSS:8.8(High)

Skype for Consumer Remote Code Execution Vulnerability

CWE-4532024

CVE-2022-47194

CRITICAL

CVSS:9.0(Critical)

An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript...

CWE-4532022