CVE advisoryCRITICAL
CVE-2024-23052
WuKongCRM Remote Code Execution via Fastjson ParseObject Function.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A critical remote code execution vulnerability exists in WuKongOpenSource CRM's fastjson component, allowing unauthenticated network access to execute arbitrary code. This impacts system integrity and data. Confirming the relevance and network exposure of this CRM system is crucial.