CVE-2024-37770

CRITICAL

CVSS v3

9.1

CRITICAL

EPSS Score

11.0%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

14Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.

Technical Details

Published
7/10/2024

Frequently Asked Questions

What is CVE-2024-37770?

14Finger v1.1 was discovered to contain a remote command execution (RCE) vulnerability in the fingerprint function. This vulnerability allows attackers to execute arbitrary commands via a crafted payload.

Is CVE-2024-37770 actively exploited?

Active exploitation of CVE-2024-37770 has not been confirmed. The EPSS score is 11.0%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2024-37770?

CVE-2024-37770 has a CVSS v3 base score of 9.1 (CRITICAL severity).

Is CVE-2024-37770 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.