← back
CVE-2024-55085

CVE-2024-55085

CVSS 9.8 CRITICALEPSS 0.8%CWE-94
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.8EPSS 0.8%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
16 Dec 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
GetSimple CMS CE 3.3.19 suffers from arbitrary code execution in the template editing function in the background management system, which can be used by an attacker to implement RCE.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a