CVE Radar Logo
CVERadar
CVE Radar Logo
CVERadar

CVE-2024-10240

Medium Severity
SVRS
30/100
CVSSv3
NA/10
EPSS
0.00039/1

CVE-2024-10240 is a newly identified vulnerability with limited details currently available, awaiting further analysis. While its CVSS score is 0, indicating a low base severity, the SOCRadar Vulnerability Risk Score (SVRS) is 30, and it is tagged as "In The Wild", suggesting potential exploitation even with limited public information. This warrants cautious monitoring. The absence of a detailed description makes it difficult to assess the specific attack vectors or affected systems. However, the "In The Wild" tag signifies that malicious actors are actively exploring or exploiting this vulnerability, potentially increasing the risk to systems. Organizations should prioritize monitoring for updates and applying patches as soon as they become available to mitigate any potential threats associated with CVE-2024-10240. The SVRS score, despite being below the critical threshold, highlights the need for vigilance given its active exploitation status. Staying informed and proactive is crucial in mitigating potential risks.

TAGS
In The Wild
VECTOR STRING
PUBLICATION DATE2024-11-27
LAST MODIFIED2024-11-27

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence
Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.
CREATE FREE ACCOUNT
CVE Details
Access comprehensive CVE information instantly
Real-time Tracking
Subscribe to CVEs and get instant updates
Exploit Analysis
Monitor related APT groups and threats
IOC Tracking
Analyze and track CVE-related IOCs

News

GitLab Patch Release: 17.5.2, 17.4.4, 17.3.7
Greg Myers2025-04-01
GitLab Patch Release: 17.5.2, 17.4.4, 17.3.7 | Today we are releasing versions 17.5.2, 17.4.4, 17.3.7 for GitLab Community Edition (CE) and Enterprise Edition (EE). These versions contain important bug and security fixes, and we strongly recommend that all self-managed GitLab installations be upgraded to one of these versions immediately. GitLab.com is already running the patched version. GitLab Dedicated customers do not need to take action. GitLab releases fixes for vulnerabilities
gitlab.com
rss
forum
news
Tageszusammenfassung - 14.11.2024
CERT.at2024-12-02
Tageszusammenfassung - 14.11.2024 | End-of-Day report Timeframe: Mittwoch 13-11-2024 18:00 - Donnerstag 14-11-2024 18:00 Handler: Alexander Riepl Co-Handler: Michael Schlagenhaufer News Hop-Skip-FortiJump-FortiJump-Higher - Fortinet FortiManager CVE-2024-47575 While the FortiJump patch does effectively neutralise the devastating RCE that is FortiJump, we-re still a little concerned about FortiManager-s overall code quality. We note that our som/export vulnerability, -FortiJump Higher-, is still functional, even in patched versions, allowing adversaries to elevate from
cert.at
rss
forum
news
CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188 / Nessus ID 211882)
vuldb.com2024-11-27
CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188 / Nessus ID 211882) | A vulnerability was found in GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Private Project Handler. The manipulation leads to exposure of sensitive system information to an unauthorized control sphere. This vulnerability is
vuldb.com
rss
forum
news
CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188)
vuldb.com2024-11-27
CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188) | A vulnerability was found in GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 and classified as problematic. Affected by this issue is some unknown functionality of the component Private Project Handler. The manipulation leads to exposure of sensitive system information to an unauthorized control sphere. This vulnerability is handled as <
vuldb.com
rss
forum
news

Social Media

CVE-2024-10240 An issue has been discovered in GitLab EE affecting all versions starting from 17.3 before 17.3.7, all versions starting from 17.4 before 17.4.4, all versions startin… https://t.co/IujPC7mgjI
0
0
0

Affected Software

No affected software found for this CVE

References

No references found for this CVE

CWE Details

No CWE details found for this CVE

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence