COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2024-44902

CVE-2024-44902

Severity
critical
Source
NVD · cve
Published
2024-09-09
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2024-44902
⚡ RCE shame 50/100 rce

A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

Players implicated

thinkphp · vendorthinkphp · product

Description

A deserialization vulnerability in Thinkphp v6.1.3 to v8.0.4 allows attackers to execute arbitrary code.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.