CVE-2024-42013

Medium CVSS: 6.4

In GRAU DATA Blocky before 3.1, Blocky-Gui has a Client-Side Enforcement of Server-Side Security vulnerability. An attacker with Windows administrative or debugging privileges can patch a binary in memory or on disk to bypass the password login requirement and gain full access to all functions of the program.

Vendor

Product

CWE

CWE-863

Yayın Tarihi

2025-01-22 16:15:29

Güncelleme

2025-02-04 19:15:31

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-863 MEDIUM 2025

Referanslar

https://www.blockyforveeam.com/en/security-bulletin-2024-06-25/ https://www.graudata.com/en/products/protection-against-ransomware/blocky-for-veeam/