CVE-2024-0857

SQLi in Universal Software's FlexWater Corporate Water Management

CVSS 9.8 CRITICALEPSS 0.4%CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection. This issue affects FlexWater Corporate Water Management: before 5.452.0.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Productos afectados

Universal Software Inc. · FlexWater Corporate Water Management

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1011 https://www.usom.gov.tr/bildirim/tr-24-1011