Vulnerability Details CVE-2024-56524
Radware Cloud Web Application Firewall (WAF) before 2025-05-07 allows remote attackers to bypass firewall filters by adding a special character to the request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.8%
CVSS Severity
CVSS v3 Score 9.1
Products affected by CVE-2024-56524
-
cpe:2.3:a:radware:cloud_waf:18.10.1
-
cpe:2.3:a:radware:cloud_waf:18.11.1
-
cpe:2.3:a:radware:cloud_waf:18.12.1
-
cpe:2.3:a:radware:cloud_waf:18.12.2
-
cpe:2.3:a:radware:cloud_waf:18.7.1
-
cpe:2.3:a:radware:cloud_waf:18.7.2
-
cpe:2.3:a:radware:cloud_waf:18.7.3
-
cpe:2.3:a:radware:cloud_waf:18.8.1
-
cpe:2.3:a:radware:cloud_waf:18.8.2
-
cpe:2.3:a:radware:cloud_waf:18.9.1
-
cpe:2.3:a:radware:cloud_waf:19.12.1
-
cpe:2.3:a:radware:cloud_waf:19.2.1
-
cpe:2.3:a:radware:cloud_waf:19.3.1
-
cpe:2.3:a:radware:cloud_waf:19.4.1
-
cpe:2.3:a:radware:cloud_waf:19.5.1
-
cpe:2.3:a:radware:cloud_waf:19.7.1
-
cpe:2.3:a:radware:cloud_waf:19.7.2
-
cpe:2.3:a:radware:cloud_waf:19.7.3
-
cpe:2.3:a:radware:cloud_waf:19.8.1
-
cpe:2.3:a:radware:cloud_waf:19.9.1
-
cpe:2.3:a:radware:cloud_waf:20.07.01
-
cpe:2.3:a:radware:cloud_waf:20.08.01
-
cpe:2.3:a:radware:cloud_waf:20.08.02
-
cpe:2.3:a:radware:cloud_waf:20.09.01
-
cpe:2.3:a:radware:cloud_waf:20.1.1
-
cpe:2.3:a:radware:cloud_waf:20.1.2
-
cpe:2.3:a:radware:cloud_waf:20.10.01
-
cpe:2.3:a:radware:cloud_waf:20.10.02
-
cpe:2.3:a:radware:cloud_waf:20.11.01
-
cpe:2.3:a:radware:cloud_waf:20.12.01
-
cpe:2.3:a:radware:cloud_waf:20.12.02
-
cpe:2.3:a:radware:cloud_waf:20.3.1
-
cpe:2.3:a:radware:cloud_waf:20.4.1
-
cpe:2.3:a:radware:cloud_waf:20.5.1
-
cpe:2.3:a:radware:cloud_waf:20.6.1
-
cpe:2.3:a:radware:cloud_waf:20.6.2
-
cpe:2.3:a:radware:cloud_waf:21.01.01
-
cpe:2.3:a:radware:cloud_waf:21.03.01
-
cpe:2.3:a:radware:cloud_waf:21.04.01
-
cpe:2.3:a:radware:cloud_waf:21.06.01
-
cpe:2.3:a:radware:cloud_waf:21.07.01