CVE-2024-12356
Command Injection Vulnerability in Remote Support(RS) & Privileged Remote Access (PRA)
In short
An attacker without login credentials can inject malicious commands into Remote Support or Privileged Remote Access systems, which then run with site user permissions. This allows complete system compromise.
Technical detail
CWE-77 command injection in PRA/RS products enables unauthenticated remote code execution through unsanitized input. The vulnerability permits arbitrary command execution in the security context of the site user, exposing the entire system to compromise.
Summary generated and translated by AI from the official description.
A critical vulnerability has been discovered in Privileged Remote Access (PRA) and Remote Support (RS) products which can allow an unauthenticated attacker to inject commands that are run as a site user.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://attackerkb.com/topics/G5s8ZWAbYH/cve-2024-12356/rapid7-analysishttps://nvd.nist.gov/vuln/detail/CVE-2024-12356https://www.beyondtrust.com/trust-center/security-advisories/bt24-10https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-12356https://www.cve.org/CVERecord?id=CVE-2024-12356