How severe is CVE-2024-25844?

CVE-2024-25844 has a CVSS v3 score of 7.5 (HIGH).

CVE-2024-25844

Name: so_flexibilite
Author: common-services

7.5HIGH

An issue was discovered in Common-Services "So Flexibilite" (soflexibilite) module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information

Publicado: 3/3/2024Actualizado: 5/23/2025

Descripción

An issue was discovered in Common-Services "So Flexibilite" (soflexibilite) module for PrestaShop before version 4.1.26, allows remote attackers to escalate privileges and obtain sensitive information via debug file.

Análisis IAImpulsado por IA

Productos Afectados

common-servicesso_flexibilite

Referencias

https://github.com/friends-of-presta/security-advisories/blob/main/_posts/2024-02-29-soflexibilite.md
Third Party Advisory
https://github.com/friends-of-presta/security-advisories/blob/main/_posts/2024-02-29-soflexibilite.md
Third Party Advisory