Lucene search
PatchstackCVE-2024-35780HistoryJun 19, 2024 - 11:15 a.m.
CVE-2024-35780
2024-06-1911:15:51
CWE-502
Patchstack
web.nvd.nist.gov
27
wordpress
live composer
php object injection
deserialization
untrusted data
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0
Percentile
9.0%
Deserialization of Untrusted Data vulnerability in Live Composer Team Page Builder: Live Composer.This issue affects Page Builder: Live Composer: from n/a through 1.5.42.
Affected configurations
Node
live_composer_teampage_builder\Match_live_composerwordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| live_composer_team | page_builder\ | _live_composer | cpe:2.3:a:live_composer_team:page_builder\:_live_composer:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "live-composer-page-builder",
"product": "Page Builder: Live Composer",
"vendor": "Live Composer Team",
"versions": [
{
"lessThanOrEqual": "1.5.42",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
cvelist
cvelist
nvd
nvd
CVE-2024-35780
2024-06-19 11:15:51
wordfence
wordfence
CVSS3
8.5
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
AI Score
8.5
Confidence
High
EPSS
0
Percentile
9.0%
Related for CVE-2024-35780