CVE-2024-55956

Published: 2024-12-13T21:15Z

Last Modified: 2025-03-14T20:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt