CVE advisoryKnown Exploit
CVE-2024-58136
Yii 2 Behavior Attachment Vulnerability.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in the Yii 2 framework allows attackers to execute arbitrary code, impacting organizations using affected versions. This flaw, related to behavior attachment handling, has been actively exploited. The business risk involves potential unauthorized access and control of systems.