AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

CVE-2024-47158: N-LINE 2.0.6 and prior versions contain a code injection vulnerability. If this vulnerability is exploited, arbitrary co

mediumvulnerability

security

Source: NVD/CVE DatabaseOctober 25, 2024CVE-2024-47158

Summary

N-LINE version 2.0.6 and earlier contain a code injection vulnerability (CWE-94, a flaw where an attacker can insert malicious code into an application), which could allow attackers to execute arbitrary code on an instructor's browser or redirect them to a malicious website. The vulnerability was reported by JPCERT/CC and assigned CVE-2024-47158 on October 25, 2024.

Vulnerability Details

CVSS Score

5.4(medium)

EPSS (30-day exploit probability)

EPSS: 0.1%

Classification

Attack SophisticationModerate

Taxonomy References

CWE (Weakness Type)

CWE-94 CWE-94

CAPEC (Attack Pattern)

CAPEC-242

Original source: https://nvd.nist.gov/vuln/detail/CVE-2024-47158

First tracked: February 15, 2026 at 08:37 PM

Classified by LLM (prompt v3) · confidence: 95%