CVE-2024-12703
Severity CVSS v4.0:
HIGH
Type:
CWE-502
Deserialization of Untrusted Dat
Publication date:
17/01/2025
Last modified:
17/01/2025
Description
CWE-502: Deserialization of untrusted data vulnerability exists that could lead to loss of confidentiality, integrity<br />
and potential remote code execution on workstation when a non-admin authenticated user opens a malicious<br />
project file.
Impact
Base Score 4.0
8.50
Severity 4.0
HIGH
Base Score 3.x
7.80
Severity 3.x
HIGH