CVE-2024-56084

{"id": "CVE-2024-56084", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.1, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.2}]}, "published": "2024-12-16T06:15:07.070", "references": [{"url": "https://servicedesk.logpoint.com/hc/en-us/articles/22137632418845-Remote-Code-Execution-while-creating-Universal-Normalizer", "tags": ["Vendor Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-77"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-77"}]}], "descriptions": [{"lang": "en", "value": "An issue was discovered in Logpoint UniversalNormalizer before 5.7.0. Authenticated users can inject payloads while creating Universal Normalizer. These are executed, leading to Remote Code Execution."}, {"lang": "es", "value": "Se descubri\u00f3 un problema en Logpoint UniversalNormalizer antes de la versi\u00f3n 5.7.0. Los usuarios autenticados pueden inyectar payloads mientras crean Universal Normalizer. Estas se ejecutan, lo que genera una ejecuci\u00f3n de c\u00f3digo remoto."}], "lastModified": "2025-06-20T18:47:13.333", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:logpoint:universal_normalizer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1AC64DB6-34CC-48B5-9D0B-E1C47EDBBDA0", "versionEndExcluding": "5.7.0"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}