CVERadar

CVE-2024-48818

Critical Severity

SVRS

84/100

CVSSv3

9.8/10

EPSS

0.00333/1

CVE-2024-48818: Remote Code Execution Vulnerability in IIT Bombay's Bodhitree. This critical vulnerability allows an attacker to execute arbitrary code remotely. The vulnerability exists within the Bodhitree of cs101 version at IIT Bombay, posing a significant security risk. With a SOCRadar Vulnerability Risk Score (SVRS) of 84, this CVE is classified as critical, demanding immediate attention and remediation efforts. The high SVRS underscores the active exploitation potential, confirmed by its presence "In The Wild". Successful exploitation could lead to complete system compromise, data breaches, and unauthorized access to sensitive information, making patching and mitigation a priority.

Indicators of Compromise

No IOCs found for this CVE

Exploits

No exploits found for this CVE

Enhance Your CVE Management with SOCRadar Vulnerability Intelligence

Get comprehensive CVE details, real-time notifications, and proactive threat management all in one platform.

CREATE FREE ACCOUNT

CVE Details

Access comprehensive CVE information instantly

Real-time Tracking

Subscribe to CVEs and get instant updates

Exploit Analysis

Monitor related APT groups and threats

IOC Tracking

Analyze and track CVE-related IOCs

News

CVE-2024-48818 | IIT Bombay Bodhitree cs101 privilege escalation

vuldb.com2025-03-25

CVE-2024-48818 | IIT Bombay Bodhitree cs101 privilege escalation | A vulnerability classified as critical was found in IIT Bombay Bodhitree cs101. Affected by this vulnerability is an unknown functionality. The manipulation leads to privilege escalation. This vulnerability is known as CVE-2024-48818. The attack can be launched remotely. Furthermore, there is an exploit available.

rss

vuldb.com

forum

news

Social Media

KLS.GIT.Belagavi

@klsgitbelagavi

14 days ago

🎉 Koushal S. Kedari (ISE, 6th sem) earns @CVEnew CVE-2024-48818 for finding a critical flaw (CVSS 9.8) in @iitbombay #Bodhitree! honoured by @DeptofDefense 🔐👏 #CyberSecurity #CVE @pnkathavi @NKathavi https://t.co/svPiOUIiPX

Cybersecurity Aide

@SecAideInfo

28 days ago

🚨 New Alert: CVE-2024-48818 🌐 Serious vulnerability found in IIT Bombay's Bodhitree cs101 version. Remote attackers can execute arbitrary code! High exploitation risk in 30 days. 🛡️ Update and patch immediately to protect your systems! #CyberSecurity #StaySafe

centry_agent

@centry_agent

2025-03-25

Cybercentry alerts users to critical vulnerabilities, emphasising prompt patches and robust security to counter CVE-2024-48818 and CVE-2025-25371 threats

CVE

@CVEnew

2025-03-25

CVE-2024-48818 An issue in IIT Bombay, Mumbai, India Bodhitree of cs101 version allows a remote attacker to execute arbitrary code. https://t.co/RTEVd0EqUI

Affected Software

No affected software found for this CVE

References

Reference	Link
[email protected]	https://packetstorm.news/files/id/183309
134C704F-9B21-4F2E-91B3-4A467353BCC0	https://packetstorm.news/files/id/183309
[email protected]	https://packetstorm.news/files/id/183309

CWE Details

CWE ID	CWE Name	Description
CWE-94	Improper Control of Generation of Code ('Code Injection')	The software constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.

CVE Radar

Real-time CVE Intelligence & Vulnerability Management Platform

CVE Radar provides comprehensive vulnerability intelligence by monitoring CVE databases, security advisories, and threat feeds. Get instant updates on new vulnerabilities, exploit details, and mitigation strategies specific to your assets.

Get Free Vulnerability Intelligence AccessAccess real-time CVE monitoring, exploit analysis, and threat intelligence