Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-50623

In Cleo Harmony before 5.8.0.21, VLTrader before 5.8.0.21, and LexiCom before 5.8.0.21, there is an unrestricted file upload and download that could lead to remote code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.94
EPSS Ranking 99.9%
CVSS Severity
CVSS v3 Score 9.8
Proposed Action
Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload and download vulnerability that can lead to remote code execution with elevated privileges.
Ransomware Campaign
Known
Products affected by CVE-2024-50623
  • Cleo » Harmony » Version: N/A
    cpe:2.3:a:cleo:harmony:-
  • Cleo » Harmony » Version: 5.8
    cpe:2.3:a:cleo:harmony:5.8
  • Cleo » Harmony » Version: 5.8.0.1
    cpe:2.3:a:cleo:harmony:5.8.0.1
  • Cleo » Harmony » Version: 5.8.0.10
    cpe:2.3:a:cleo:harmony:5.8.0.10
  • Cleo » Harmony » Version: 5.8.0.11
    cpe:2.3:a:cleo:harmony:5.8.0.11
  • Cleo » Harmony » Version: 5.8.0.12
    cpe:2.3:a:cleo:harmony:5.8.0.12
  • Cleo » Harmony » Version: 5.8.0.13
    cpe:2.3:a:cleo:harmony:5.8.0.13
  • Cleo » Harmony » Version: 5.8.0.14
    cpe:2.3:a:cleo:harmony:5.8.0.14
  • Cleo » Harmony » Version: 5.8.0.15
    cpe:2.3:a:cleo:harmony:5.8.0.15
  • Cleo » Harmony » Version: 5.8.0.16
    cpe:2.3:a:cleo:harmony:5.8.0.16
  • Cleo » Harmony » Version: 5.8.0.17
    cpe:2.3:a:cleo:harmony:5.8.0.17
  • Cleo » Harmony » Version: 5.8.0.18
    cpe:2.3:a:cleo:harmony:5.8.0.18
  • Cleo » Harmony » Version: 5.8.0.19
    cpe:2.3:a:cleo:harmony:5.8.0.19
  • Cleo » Harmony » Version: 5.8.0.2
    cpe:2.3:a:cleo:harmony:5.8.0.2
  • Cleo » Harmony » Version: 5.8.0.20
    cpe:2.3:a:cleo:harmony:5.8.0.20
  • Cleo » Harmony » Version: 5.8.0.3
    cpe:2.3:a:cleo:harmony:5.8.0.3
  • Cleo » Harmony » Version: 5.8.0.4
    cpe:2.3:a:cleo:harmony:5.8.0.4
  • Cleo » Harmony » Version: 5.8.0.5
    cpe:2.3:a:cleo:harmony:5.8.0.5
  • Cleo » Harmony » Version: 5.8.0.6
    cpe:2.3:a:cleo:harmony:5.8.0.6
  • Cleo » Harmony » Version: 5.8.0.7
    cpe:2.3:a:cleo:harmony:5.8.0.7
  • Cleo » Harmony » Version: 5.8.0.8
    cpe:2.3:a:cleo:harmony:5.8.0.8
  • Cleo » Harmony » Version: 5.8.0.9
    cpe:2.3:a:cleo:harmony:5.8.0.9
  • Cleo » Lexicom » Version: N/A
    cpe:2.3:a:cleo:lexicom:-
  • Cleo » Lexicom » Version: 5.5.0.0
    cpe:2.3:a:cleo:lexicom:5.5.0.0
  • Cleo » Lexicom » Version: 5.6
    cpe:2.3:a:cleo:lexicom:5.6
  • Cleo » Lexicom » Version: 5.6.1
    cpe:2.3:a:cleo:lexicom:5.6.1
  • Cleo » Lexicom » Version: 5.6.2
    cpe:2.3:a:cleo:lexicom:5.6.2
  • Cleo » Lexicom » Version: 5.7
    cpe:2.3:a:cleo:lexicom:5.7
  • Cleo » Lexicom » Version: 5.8
    cpe:2.3:a:cleo:lexicom:5.8
  • Cleo » Lexicom » Version: 5.8.0.1
    cpe:2.3:a:cleo:lexicom:5.8.0.1
  • Cleo » Lexicom » Version: 5.8.0.10
    cpe:2.3:a:cleo:lexicom:5.8.0.10
  • Cleo » Lexicom » Version: 5.8.0.11
    cpe:2.3:a:cleo:lexicom:5.8.0.11
  • Cleo » Lexicom » Version: 5.8.0.12
    cpe:2.3:a:cleo:lexicom:5.8.0.12
  • Cleo » Lexicom » Version: 5.8.0.13
    cpe:2.3:a:cleo:lexicom:5.8.0.13
  • Cleo » Lexicom » Version: 5.8.0.14
    cpe:2.3:a:cleo:lexicom:5.8.0.14
  • Cleo » Lexicom » Version: 5.8.0.15
    cpe:2.3:a:cleo:lexicom:5.8.0.15
  • Cleo » Lexicom » Version: 5.8.0.16
    cpe:2.3:a:cleo:lexicom:5.8.0.16
  • Cleo » Lexicom » Version: 5.8.0.17
    cpe:2.3:a:cleo:lexicom:5.8.0.17
  • Cleo » Lexicom » Version: 5.8.0.18
    cpe:2.3:a:cleo:lexicom:5.8.0.18
  • Cleo » Lexicom » Version: 5.8.0.19
    cpe:2.3:a:cleo:lexicom:5.8.0.19
  • Cleo » Lexicom » Version: 5.8.0.2
    cpe:2.3:a:cleo:lexicom:5.8.0.2
  • Cleo » Lexicom » Version: 5.8.0.20
    cpe:2.3:a:cleo:lexicom:5.8.0.20
  • Cleo » Lexicom » Version: 5.8.0.3
    cpe:2.3:a:cleo:lexicom:5.8.0.3
  • Cleo » Lexicom » Version: 5.8.0.4
    cpe:2.3:a:cleo:lexicom:5.8.0.4
  • Cleo » Lexicom » Version: 5.8.0.5
    cpe:2.3:a:cleo:lexicom:5.8.0.5
  • Cleo » Lexicom » Version: 5.8.0.6
    cpe:2.3:a:cleo:lexicom:5.8.0.6
  • Cleo » Lexicom » Version: 5.8.0.7
    cpe:2.3:a:cleo:lexicom:5.8.0.7
  • Cleo » Lexicom » Version: 5.8.0.8
    cpe:2.3:a:cleo:lexicom:5.8.0.8
  • Cleo » Lexicom » Version: 5.8.0.9
    cpe:2.3:a:cleo:lexicom:5.8.0.9
  • Cleo » Vltrader » Version: N/A
    cpe:2.3:a:cleo:vltrader:-
  • Cleo » Vltrader » Version: 5.8
    cpe:2.3:a:cleo:vltrader:5.8
  • Cleo » Vltrader » Version: 5.8.0.1
    cpe:2.3:a:cleo:vltrader:5.8.0.1
  • Cleo » Vltrader » Version: 5.8.0.10
    cpe:2.3:a:cleo:vltrader:5.8.0.10
  • Cleo » Vltrader » Version: 5.8.0.11
    cpe:2.3:a:cleo:vltrader:5.8.0.11
  • Cleo » Vltrader » Version: 5.8.0.12
    cpe:2.3:a:cleo:vltrader:5.8.0.12
  • Cleo » Vltrader » Version: 5.8.0.13
    cpe:2.3:a:cleo:vltrader:5.8.0.13
  • Cleo » Vltrader » Version: 5.8.0.14
    cpe:2.3:a:cleo:vltrader:5.8.0.14
  • Cleo » Vltrader » Version: 5.8.0.15
    cpe:2.3:a:cleo:vltrader:5.8.0.15
  • Cleo » Vltrader » Version: 5.8.0.16
    cpe:2.3:a:cleo:vltrader:5.8.0.16
  • Cleo » Vltrader » Version: 5.8.0.17
    cpe:2.3:a:cleo:vltrader:5.8.0.17
  • Cleo » Vltrader » Version: 5.8.0.18
    cpe:2.3:a:cleo:vltrader:5.8.0.18
  • Cleo » Vltrader » Version: 5.8.0.19
    cpe:2.3:a:cleo:vltrader:5.8.0.19
  • Cleo » Vltrader » Version: 5.8.0.2
    cpe:2.3:a:cleo:vltrader:5.8.0.2
  • Cleo » Vltrader » Version: 5.8.0.20
    cpe:2.3:a:cleo:vltrader:5.8.0.20
  • Cleo » Vltrader » Version: 5.8.0.3
    cpe:2.3:a:cleo:vltrader:5.8.0.3
  • Cleo » Vltrader » Version: 5.8.0.4
    cpe:2.3:a:cleo:vltrader:5.8.0.4
  • Cleo » Vltrader » Version: 5.8.0.5
    cpe:2.3:a:cleo:vltrader:5.8.0.5
  • Cleo » Vltrader » Version: 5.8.0.6
    cpe:2.3:a:cleo:vltrader:5.8.0.6
  • Cleo » Vltrader » Version: 5.8.0.7
    cpe:2.3:a:cleo:vltrader:5.8.0.7
  • Cleo » Vltrader » Version: 5.8.0.8
    cpe:2.3:a:cleo:vltrader:5.8.0.8
  • Cleo » Vltrader » Version: 5.8.0.9
    cpe:2.3:a:cleo:vltrader:5.8.0.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved