CVE-2024-26289

Summary

Deserialization of Untrusted Data vulnerability in PMB Services PMB allows Remote Code Inclusion.This issue affects PMB: from 7.5.1 before 7.5.6-2, from 7.4.1 before 7.4.9, from 7.3.1 before 7.3.18.

Affected Software

VendorProductVersion RangeStatus
PMB ServicesPMB7.5.1 < 7.5.6-2affected
PMB ServicesPMB7.4.1 < 7.4.9affected
PMB ServicesPMB7.3.1 < 7.3.18affected

Weaknesses

  • CWE-502: CWE-502 Deserialization of Untrusted Data

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References