CVE advisoryKnown Exploit
CVE-2024-50623
Cleo Products: Unrestricted File Upload Risk
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
Certain Cleo products are affected by an unrestricted file upload and download vulnerability. This could allow unauthorized code execution, leading to potential system compromise and data risk. This vulnerability has been observed in ransomware campaigns.