CVE-2024-23049
9.8CRITICALAn issue in symphony v.3.6.3 and before allows a remote attacker to execute arbitrary code via the log4j component.
Published: 2/5/2024Updated: 6/17/2025
Description
An issue in symphony v.3.6.3 and before allows a remote attacker to execute arbitrary code via the log4j component.
AI AnalysisPowered by AI
Affected Products
b3logsymphony
References
- https://github.com/88250/symphony/issues/82ExploitIssue Tracking
- https://github.com/88250/symphony/issues/82ExploitIssue Tracking