New assessment for topic: CVE-2024-55956
Topic description: "In Cleo Harmony before 5.8.0.24, VLTrader before 5.8.0.24, and LexiCom before 5.8.0.24, an unauthenticated user can import and execute arbitrary Bash or PowerShell commands on the host system by leveraging the default settings of the Autorun directory. ..."
"Based on performing the [technical analysis](https://attackerkb.com/topics/geR0H8dgrE/cve-2024-55956/rapid7-analysis) of this vulnerability, and writing a working exploit, I have rated the `Attacker Value` as `Very High`, as the target software is a file sharing system, and we know this is being exploited in the wild ..."
Link:
https://attackerkb.com/assessments/fd31b57f-a2cd-440b-959b-2751f6940688