Medium severity4.6NVD Advisory· Published Sep 30, 2024· Updated Jun 17, 2026
CVE-2024-47531
CVE-2024-47531
Description
Scout is a web-based visualizer for VCF-files. Due to the lack of sanitization in the filename, it is possible bypass intended file extension and make users download malicious files with any extension. With malicious content injected inside the file data and users unknowingly downloading it and opening may lead to the compromise of users' devices or data. This vulnerability is fixed in 4.89.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <= 4.88.1
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.