Cleo file transfer products have an unrestricted file upload vulnerability that may allow remote code execution.
Reporter | Title | Published | Views | Family All 14 |
---|---|---|---|---|
AttackerKB | CVE-2024-50623 | 28 Oct 202400:00 | β | attackerkb |
AttackerKB | CVE-2024-55956 | 13 Dec 202400:00 | β | attackerkb |
NVD | CVE-2024-50623 | 28 Oct 202400:15 | β | nvd |
Cvelist | CVE-2024-50623 | 27 Oct 202400:00 | β | cvelist |
Rapid7 Blog | Modular Java Backdoor Dropped in Cleo Exploitation Campaign | 11 Dec 202418:44 | β | rapid7blog |
Rapid7 Blog | Whatβs New in Rapid7 Products & Services: Q4 2024 in Review | 18 Dec 202414:00 | β | rapid7blog |
Rapid7 Blog | Widespread Exploitation of Cleo File Transfer Software (CVE-2024-55956) | 10 Dec 202414:04 | β | rapid7blog |
Rapid7 Blog | Metasploit Wrap-Up 01/17/2025 | 17 Jan 202519:22 | β | rapid7blog |
Vulnrichment | CVE-2024-50623 | 27 Oct 202400:00 | β | vulnrichment |
GithubExploit | Exploit for Unrestricted Upload of File with Dangerous Type in Cleo Harmony | 23 Dec 202408:52 | β | githubexploit |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo