Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-55956

In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.923
EPSS Ranking 99.7%
CVSS Severity
CVSS v3 Score 9.8
Proposed Action
Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload vulnerability that could allow an unauthenticated user to import and execute arbitrary bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory.
Ransomware Campaign
Known
Products affected by CVE-2024-55956
  • Cleo » Harmony » Version: N/A
    cpe:2.3:a:cleo:harmony:-
  • Cleo » Harmony » Version: 5.8
    cpe:2.3:a:cleo:harmony:5.8
  • Cleo » Harmony » Version: 5.8.0.1
    cpe:2.3:a:cleo:harmony:5.8.0.1
  • Cleo » Harmony » Version: 5.8.0.10
    cpe:2.3:a:cleo:harmony:5.8.0.10
  • Cleo » Harmony » Version: 5.8.0.11
    cpe:2.3:a:cleo:harmony:5.8.0.11
  • Cleo » Harmony » Version: 5.8.0.12
    cpe:2.3:a:cleo:harmony:5.8.0.12
  • Cleo » Harmony » Version: 5.8.0.13
    cpe:2.3:a:cleo:harmony:5.8.0.13
  • Cleo » Harmony » Version: 5.8.0.14
    cpe:2.3:a:cleo:harmony:5.8.0.14
  • Cleo » Harmony » Version: 5.8.0.15
    cpe:2.3:a:cleo:harmony:5.8.0.15
  • Cleo » Harmony » Version: 5.8.0.16
    cpe:2.3:a:cleo:harmony:5.8.0.16
  • Cleo » Harmony » Version: 5.8.0.17
    cpe:2.3:a:cleo:harmony:5.8.0.17
  • Cleo » Harmony » Version: 5.8.0.18
    cpe:2.3:a:cleo:harmony:5.8.0.18
  • Cleo » Harmony » Version: 5.8.0.19
    cpe:2.3:a:cleo:harmony:5.8.0.19
  • Cleo » Harmony » Version: 5.8.0.2
    cpe:2.3:a:cleo:harmony:5.8.0.2
  • Cleo » Harmony » Version: 5.8.0.20
    cpe:2.3:a:cleo:harmony:5.8.0.20
  • Cleo » Harmony » Version: 5.8.0.21
    cpe:2.3:a:cleo:harmony:5.8.0.21
  • Cleo » Harmony » Version: 5.8.0.22
    cpe:2.3:a:cleo:harmony:5.8.0.22
  • Cleo » Harmony » Version: 5.8.0.23
    cpe:2.3:a:cleo:harmony:5.8.0.23
  • Cleo » Harmony » Version: 5.8.0.3
    cpe:2.3:a:cleo:harmony:5.8.0.3
  • Cleo » Harmony » Version: 5.8.0.4
    cpe:2.3:a:cleo:harmony:5.8.0.4
  • Cleo » Harmony » Version: 5.8.0.5
    cpe:2.3:a:cleo:harmony:5.8.0.5
  • Cleo » Harmony » Version: 5.8.0.6
    cpe:2.3:a:cleo:harmony:5.8.0.6
  • Cleo » Harmony » Version: 5.8.0.7
    cpe:2.3:a:cleo:harmony:5.8.0.7
  • Cleo » Harmony » Version: 5.8.0.8
    cpe:2.3:a:cleo:harmony:5.8.0.8
  • Cleo » Harmony » Version: 5.8.0.9
    cpe:2.3:a:cleo:harmony:5.8.0.9
  • Cleo » Lexicom » Version: N/A
    cpe:2.3:a:cleo:lexicom:-
  • Cleo » Lexicom » Version: 5.5.0.0
    cpe:2.3:a:cleo:lexicom:5.5.0.0
  • Cleo » Lexicom » Version: 5.6
    cpe:2.3:a:cleo:lexicom:5.6
  • Cleo » Lexicom » Version: 5.6.1
    cpe:2.3:a:cleo:lexicom:5.6.1
  • Cleo » Lexicom » Version: 5.6.2
    cpe:2.3:a:cleo:lexicom:5.6.2
  • Cleo » Lexicom » Version: 5.7
    cpe:2.3:a:cleo:lexicom:5.7
  • Cleo » Lexicom » Version: 5.8
    cpe:2.3:a:cleo:lexicom:5.8
  • Cleo » Lexicom » Version: 5.8.0.1
    cpe:2.3:a:cleo:lexicom:5.8.0.1
  • Cleo » Lexicom » Version: 5.8.0.10
    cpe:2.3:a:cleo:lexicom:5.8.0.10
  • Cleo » Lexicom » Version: 5.8.0.11
    cpe:2.3:a:cleo:lexicom:5.8.0.11
  • Cleo » Lexicom » Version: 5.8.0.12
    cpe:2.3:a:cleo:lexicom:5.8.0.12
  • Cleo » Lexicom » Version: 5.8.0.13
    cpe:2.3:a:cleo:lexicom:5.8.0.13
  • Cleo » Lexicom » Version: 5.8.0.14
    cpe:2.3:a:cleo:lexicom:5.8.0.14
  • Cleo » Lexicom » Version: 5.8.0.15
    cpe:2.3:a:cleo:lexicom:5.8.0.15
  • Cleo » Lexicom » Version: 5.8.0.16
    cpe:2.3:a:cleo:lexicom:5.8.0.16
  • Cleo » Lexicom » Version: 5.8.0.17
    cpe:2.3:a:cleo:lexicom:5.8.0.17
  • Cleo » Lexicom » Version: 5.8.0.18
    cpe:2.3:a:cleo:lexicom:5.8.0.18
  • Cleo » Lexicom » Version: 5.8.0.19
    cpe:2.3:a:cleo:lexicom:5.8.0.19
  • Cleo » Lexicom » Version: 5.8.0.2
    cpe:2.3:a:cleo:lexicom:5.8.0.2
  • Cleo » Lexicom » Version: 5.8.0.20
    cpe:2.3:a:cleo:lexicom:5.8.0.20
  • Cleo » Lexicom » Version: 5.8.0.21
    cpe:2.3:a:cleo:lexicom:5.8.0.21
  • Cleo » Lexicom » Version: 5.8.0.22
    cpe:2.3:a:cleo:lexicom:5.8.0.22
  • Cleo » Lexicom » Version: 5.8.0.23
    cpe:2.3:a:cleo:lexicom:5.8.0.23
  • Cleo » Lexicom » Version: 5.8.0.3
    cpe:2.3:a:cleo:lexicom:5.8.0.3
  • Cleo » Lexicom » Version: 5.8.0.4
    cpe:2.3:a:cleo:lexicom:5.8.0.4
  • Cleo » Lexicom » Version: 5.8.0.5
    cpe:2.3:a:cleo:lexicom:5.8.0.5
  • Cleo » Lexicom » Version: 5.8.0.6
    cpe:2.3:a:cleo:lexicom:5.8.0.6
  • Cleo » Lexicom » Version: 5.8.0.7
    cpe:2.3:a:cleo:lexicom:5.8.0.7
  • Cleo » Lexicom » Version: 5.8.0.8
    cpe:2.3:a:cleo:lexicom:5.8.0.8
  • Cleo » Lexicom » Version: 5.8.0.9
    cpe:2.3:a:cleo:lexicom:5.8.0.9
  • Cleo » Vltrader » Version: N/A
    cpe:2.3:a:cleo:vltrader:-
  • Cleo » Vltrader » Version: 5.8
    cpe:2.3:a:cleo:vltrader:5.8
  • Cleo » Vltrader » Version: 5.8.0.1
    cpe:2.3:a:cleo:vltrader:5.8.0.1
  • Cleo » Vltrader » Version: 5.8.0.10
    cpe:2.3:a:cleo:vltrader:5.8.0.10
  • Cleo » Vltrader » Version: 5.8.0.11
    cpe:2.3:a:cleo:vltrader:5.8.0.11
  • Cleo » Vltrader » Version: 5.8.0.12
    cpe:2.3:a:cleo:vltrader:5.8.0.12
  • Cleo » Vltrader » Version: 5.8.0.13
    cpe:2.3:a:cleo:vltrader:5.8.0.13
  • Cleo » Vltrader » Version: 5.8.0.14
    cpe:2.3:a:cleo:vltrader:5.8.0.14
  • Cleo » Vltrader » Version: 5.8.0.15
    cpe:2.3:a:cleo:vltrader:5.8.0.15
  • Cleo » Vltrader » Version: 5.8.0.16
    cpe:2.3:a:cleo:vltrader:5.8.0.16
  • Cleo » Vltrader » Version: 5.8.0.17
    cpe:2.3:a:cleo:vltrader:5.8.0.17
  • Cleo » Vltrader » Version: 5.8.0.18
    cpe:2.3:a:cleo:vltrader:5.8.0.18
  • Cleo » Vltrader » Version: 5.8.0.19
    cpe:2.3:a:cleo:vltrader:5.8.0.19
  • Cleo » Vltrader » Version: 5.8.0.2
    cpe:2.3:a:cleo:vltrader:5.8.0.2
  • Cleo » Vltrader » Version: 5.8.0.20
    cpe:2.3:a:cleo:vltrader:5.8.0.20
  • Cleo » Vltrader » Version: 5.8.0.21
    cpe:2.3:a:cleo:vltrader:5.8.0.21
  • Cleo » Vltrader » Version: 5.8.0.22
    cpe:2.3:a:cleo:vltrader:5.8.0.22
  • Cleo » Vltrader » Version: 5.8.0.23
    cpe:2.3:a:cleo:vltrader:5.8.0.23
  • Cleo » Vltrader » Version: 5.8.0.3
    cpe:2.3:a:cleo:vltrader:5.8.0.3
  • Cleo » Vltrader » Version: 5.8.0.4
    cpe:2.3:a:cleo:vltrader:5.8.0.4
  • Cleo » Vltrader » Version: 5.8.0.5
    cpe:2.3:a:cleo:vltrader:5.8.0.5
  • Cleo » Vltrader » Version: 5.8.0.6
    cpe:2.3:a:cleo:vltrader:5.8.0.6
  • Cleo » Vltrader » Version: 5.8.0.7
    cpe:2.3:a:cleo:vltrader:5.8.0.7
  • Cleo » Vltrader » Version: 5.8.0.8
    cpe:2.3:a:cleo:vltrader:5.8.0.8
  • Cleo » Vltrader » Version: 5.8.0.9
    cpe:2.3:a:cleo:vltrader:5.8.0.9


Products
Pricing
Contact Us

Shodan ® - All rights reserved