CRITICAL✓ PATCH🇵🇱 Wersja polska

CVE-2024-28000

CVSS 9.8v3.1pub. 2024-08-21upd. 2026-04-29

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache.This issue affects LiteSpeed Cache: from n/a through <= 6.3.0.1.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Litespeedtech Litespeed Cache

    APP
    Litespeedtech
    1.9 – 6.4 (bez)
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
CWE
References

Related vulnerabilities

CVE-2024-44000CRITICAL9.8PL ✓ten sam produkt

LiteSpeed Cache – nieuwierzytelnione przejęcie konta przez ujawnione dane logowania

CVE-2024-50550HIGH8.1ten sam produkt

Incorrect Privilege Assignment vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows ...

CVE-2024-47637HIGH8.8ten sam produkt

Relative Path Traversal vulnerability in LiteSpeed Technologies LiteSpeed Cache litespeed-cache allows Path Tr...

CVE-2024-47374HIGH7.1ten sam produkt

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in LiteSpee...

CVE-2023-45000HIGH8.2ten sam produkt

Missing Authorization vulnerability in LiteSpeed Technologies LiteSpeed Cache.This issue affects LiteSpeed Cac...