Security researchers highlight that a high-risk vulnerability, CVE-2024-50623, is being exploited by hackers to execute mass hacks, affecting Cleo's file transfer tools.
Cleo disclosed the vulnerability in a security advisory, released on October 30, emphasizing that exploitation could lead to remote code execution in several key products.
The affected Cleo products, namely LexiCom, VLTransfer, and Harmony, are widely used in enterprises for managing file transfers, raising concerns over potential massive impacts.
Researchers from Huntress point out that the ongoing exploitation of the vulnerability further emphasizes the importance of prompt software updates and security measures in enterprises.
Collection
[
|
...
]