CVE-2024-24551

🗓️ 24 Jun 2024 07:08:22Reported by NCSC.chType

Bludit vulnerability allows code executio

Reporter	Title	Published	Views	Family All 6
CNNVD	Bludit Security Breach	24 Jun 202400:00	–	cnnvd
Cvelist	CVE-2024-24551 Bludit - Remote Code Execution (RCE) through Image API	24 Jun 202407:08	–	cvelist
EUVD	EUVD-2024-21969	3 Oct 202520:07	–	euvd
NVD	CVE-2024-24551	24 Jun 202407:15	–	nvd
Positive Technologies	PT-2024-20443	24 Jun 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-24551 Bludit - Remote Code Execution (RCE) through Image API	24 Jun 202407:08	–	vulnrichment

NVD

Node

bludit bluditRange≤3.15.0

[
  {
    "collectionURL": "https://www.bludit.com/",
    "defaultStatus": "unaffected",
    "packageName": "Bludit",
    "platforms": [
      "Linux",
      "Windows",
      "MacOS"
    ],
    "product": "Bludit",
    "programFiles": [
      "bl-kernel/functions.php",
      "bl-plugins/api/plugin.php"
    ],
    "repo": "https://github.com/bludit/bludit/",
    "vendor": "Bludit",
    "versions": [
      {
        "status": "affected",
        "version": "v3.9.0 beta 1"
      }
    ]
  }
]

Source	Link
redguard	www.redguard.ch/blog/2024/06/20/security-advisory-bludit/

17 Jun 2026 07:14Current

7.6High risk

Vulners AI Score7.6

CVSS 3.18.8

CVSS 48.9

EPSS0.00755

SSVC

bludit vulnerability code execution image api file uploads php files security