Cyber Resilience

CVE-2024-11320

MediumRCE

Published: 21 November 2024

Published
21 November 2024
Modified
26 November 2024
KEV Added
Patch
CVSS Score v4 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:L/VI:H/VA:L/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:P/AU:N/R:U/V:C/RE:M/U:Amber
EPSS Score 0.9262 99.8th percentile
Risk Priority 69 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-11320 is a medium-severity Command Injection (CWE-77) vulnerability in Pandorafms Pandora Fms. Its CVSS base score is 6.9 (Medium).

Operationally, ranked in the top 0.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

Deeper analysis

CVE-2024-11320 is a command injection vulnerability, tracked as CWE-77, in the LDAP authentication mechanism of Pandora FMS. It affects versions 700 through 777.4 and permits arbitrary command execution on the server.

An attacker with high privileges can exploit the flaw over the network to achieve high-integrity impact on the target system, although the CVSS vector indicates that user interaction is required.

The vendor advisory at https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/ addresses the issue. The associated EPSS score stands at 0.9262 with a recorded peak of 0.9307.

EU & UK References

Vulnerability details

Arbitrary commands execution on the server by exploiting a command injection vulnerability in the LDAP authentication mechanism. This issue affects Pandora FMS: from 700 through <=777.4

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

pandorafms
pandora fms
700 — 777.5

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References