Critical Vulnerability Found in PRTG Network Monitor
/ 1 min read
🕵️♂️ Critical vulnerability discovered in Paessler PRTG Network Monitor. A significant authentication bypass vulnerability (CVE-2024-12833) has been identified in Paessler PRTG Network Monitor, with a CVSS score of 8.0, indicating high severity. This flaw allows network-adjacent attackers to bypass authentication through the web interface by exploiting improper validation of user-supplied data, potentially leading to arbitrary script injection. While some user interaction from an administrator is necessary for exploitation, the vulnerability poses a serious risk to affected installations. The Zero Day Initiative reported the issue to Paessler on March 13, 2024, and a public advisory was released on December 30, 2024, urging users to restrict application interaction as a mitigation strategy.
