Critical Craft CMS Vulnerabilities Exploited by Hackers; Servers Compromised

TL;DR

Hackers are actively exploiting two critical security flaws in Craft CMS, compromising hundreds of servers. These vulnerabilities, identified as CVE-2024-58136 and CVE-2024-58137, allow unauthorized access and data breaches.

Critical Craft CMS Vulnerabilities Exploited

Threat actors have been observed exploiting two newly disclosed critical security flaws in Craft CMS. These vulnerabilities have been targeted in zero-day attacks to breach servers and gain unauthorized access. The attacks were first observed by Orange Cyberdefense SensePost on February 14, 2025.

Vulnerabilities Involved

1. CVE-2024-58136 (CVSS score: 9.0) - An improper protection of alternate path flaw in the Yii PHP framework used by Craft CMS.
2. CVE-2024-58137 (CVSS score: 8.8) - A deserialization of untrusted data vulnerability in Craft CMS.

These vulnerabilities, when chained together, allow attackers to execute arbitrary code and gain full control over the affected servers. The flaws highlight the importance of regular security updates and patches to protect against such threats.

Impact and Mitigation

The exploitation of these vulnerabilities has led to the compromise of hundreds of servers, putting sensitive data at risk. Organizations using Craft CMS are urged to apply the latest security patches provided by the developers to mitigate these threats.

For more details, visit the full article: source

Conclusion

The recent exploitation of Craft CMS vulnerabilities underscores the need for vigilant cybersecurity practices. Organizations must prioritize regular updates and security audits to protect against emerging threats. Staying informed about the latest vulnerabilities and applying timely patches is crucial for maintaining a secure digital environment.

Additional Resources

For further insights, check: