Cyber Resilience

CVE-2024-50704

CriticalRCE

Published: 04 March 2025

Published
04 March 2025
Modified
28 May 2025
KEV Added
Patch
CVSS Score v3.1 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS Score 0.0449 89.4th percentile
Risk Priority 23 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-50704 is a critical-severity Code Injection (CWE-94) vulnerability in Uniguest Tripleplay. Its CVSS base score is 10.0 (Critical).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked in the top 10.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 AC-14 (Permitted Actions Without Identification or Authentication) and SI-10 (Information Input Validation).

Deeper analysis

CVE-2024-50704 is an unauthenticated remote code execution vulnerability affecting Uniguest Tripleplay versions prior to 24.2.1. It is tracked under CWE-94 and carries a CVSS 3.1 base score of 10.0 reflecting network attack vector, low complexity, no required privileges or user interaction, and full impact on confidentiality, integrity, and availability within a changed scope.

Remote attackers can exploit the flaw by sending a specially crafted HTTP POST request to an exposed Tripleplay instance, resulting in arbitrary code execution on the target system without any authentication.

Uniguest has published mitigation guidance in its CVE bulletins and a dedicated vulnerability summary document available at the referenced URLs.

The associated EPSS score rose from a low baseline to a peak of 0.0832 on 2026-04-18 before receding to the current value of 0.0449, indicating that exploitation interest emerged after public disclosure.

EU & UK References

Vulnerability details

Unauthenticated remote code execution vulnerability in Uniguest Tripleplay before 24.2.1 allows remote attackers to execute arbitrary code via a specially crafted HTTP POST request.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

Unauthenticated RCE in public-facing application via crafted HTTP request directly maps to T1190 Exploit Public-Facing Application for initial access.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2024-50707Same product: Uniguest Tripleplay
CVE-2024-50706Same product: Uniguest Tripleplay
CVE-2024-50705Same product: Uniguest Tripleplay
CVE-2025-13773Shared CWE-94
CVE-2025-50692Shared CWE-94
CVE-2026-30643Shared CWE-94
CVE-2026-30460Shared CWE-94
CVE-2025-71243Shared CWE-94
CVE-2026-44262Shared CWE-94
CVE-2024-13792Shared CWE-94

Affected Assets

uniguest
tripleplay
24.2 · ≤ 24.1.2

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly remediates the unauthenticated RCE vulnerability by requiring timely patching to Uniguest Tripleplay version 24.2.1 or later.

prevent

Validates and sanitizes specially crafted HTTP POST requests to prevent arbitrary code execution.

prevent

Limits permitted actions without authentication to exclude capabilities that enable remote code execution via HTTP POST.

References