Main Vulnerability Database Exploits ID:10470 - Exploit for Incorrect Privilege Assignment in LiteSpeed Cache - CVE-2024-28000

ID:10470 - Exploit for Incorrect Privilege Assignment in LiteSpeed Cache - CVE-2024-28000

Published: August 30, 2024

Vulnerability identifier: #VU96486

Vulnerability risk: High

CVE-ID: CVE-2024-28000

CWE-ID: CWE-266

Exploitation vector: Remote access

Vulnerable software:
LiteSpeed Cache

Link to public exploit:

https://github.com/arch1m3d/CVE-2024-28000

Vulnerability description

The vulnerability allows a remote attacker to escalate privileges on the system.

The vulnerability exists due to a weak security hash in a user simulation feature. A remote attacker can gain elevated privileges on the target system.

Remediation

Install updates from vendor's website.

ID:10470 - Exploit for Incorrect Privilege Assignment in LiteSpeed Cache - CVE-2024-28000

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human