PT-2025-22517 · Unknown · Matrix Series+2
Published
2025-05-22
·
Updated
2025-05-25
·
CVE-2024-9639
CVSS v3.1
8.0
High
| Vector | AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ASPECT-Enterprise versions through 3.08.03
NEXUS Series versions through 3.08.03
MATRIX Series versions through 3.08.03
Description
Remote Code Execution vulnerabilities are present in ASPECT if session administrator credentials become compromised.
Recommendations
For ASPECT-Enterprise versions through 3.08.03, ensure that session administrator credentials are secure to prevent exploitation.
For NEXUS Series versions through 3.08.03, restrict access to sensitive areas of the system to minimize the risk of Remote Code Execution.
For MATRIX Series versions through 3.08.03, consider implementing additional security measures to protect against compromised session administrator credentials.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
RCE
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aspect-Enterprise
Matrix Series
Nexus Series