CVE-2024-48956
Published: 09 December 2024
Summary
CVE-2024-48956 is a critical-severity Use of Default Cryptographic Key (CWE-1394) vulnerability in Serviceware Se (inferred from references). Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 6.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
Deeper analysis
Serviceware Processes versions 6.0 through 7.3 before 7.4 contain a remote code execution vulnerability tracked as CVE-2024-48956. The flaw permits an unauthenticated attacker to submit a specially crafted HTTP request to a service endpoint, resulting in arbitrary code execution on the affected system. It carries a CVSS 3.1 base score of 9.8 and is associated with CWE-1394.
An attacker with no valid credentials can exploit the issue over the network by targeting the exposed service endpoint. Successful exploitation grants full control over confidentiality, integrity, and availability of the impacted installation, consistent with the CVSS vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.
The vendor advisory published at security.serviceware-se.com/CVE-2024-48956/ and the product page at serviceware-se.com/platform/serviceware-processes indicate that the issue is resolved in version 7.4. The current EPSS score of 0.1162 shows no material increase from its recorded peak.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-43178
Vulnerability details
Serviceware Processes 6.0 through 7.3 before 7.4 allows attackers without valid authentication to send a specially crafted HTTP request to a service endpoint resulting in remote code execution.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.