Vulnerability Description
In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cleo | Harmony | < 5.8.0.24 |
| Cleo | Lexicom | < 5.8.0.24 |
| Cleo | Vltrader | < 5.8.0.24 |
Related Weaknesses (CWE)
References
- https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Vendor Advisory
- https://support.cleo.com/hc/en-us/articles/28408134019735-Cleo-Product-Security-Vendor Advisory
- https://www.huntress.com/blog/threat-advisory-oh-no-cleo-cleo-software-actively-ExploitThird Party Advisory
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-US Government Resource
FAQ
What is CVE-2024-55956?
CVE-2024-55956 is a vulnerability with a CVSS score of 9.8 (CRITICAL). In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by lever...
How severe is CVE-2024-55956?
CVE-2024-55956 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2024-55956?
Check the references section above for vendor advisories and patch information. Affected products include: Cleo Harmony, Cleo Lexicom, Cleo Vltrader.