CVE-2024-51721 HIGH

CVE-2024-51721: Vulnerabilities in SecuSUITE Server Components Impact SecuSUITE

Vendor Blackberry
Product SecuSUITE
Weakness CWE-59
Published November 12, 2024
Last update November 12, 2024

CVSS base score

7.3/10
Attack vector Adjacent
Attack complexity High
Privileges required High
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

A code injection vulnerability in the SecuSUITE Server Web Administration Portal of SecuSUITE versions 5.0.420 and earlier could allow an attacker to potentially inject script commands or other executable content into the server that would run with root privilege.

Key dates

02Disclosure timeline

November 12, 2024 CVE published
November 12, 2024 Record updated