CVE-2024-0857

SQLi in Universal Software's FlexWater Corporate Water Management

CVSS 9.8 CRITICALEPSS 0.4%CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection. This issue affects FlexWater Corporate Water Management: before 5.452.0.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Produtos afetados

Universal Software Inc. · FlexWater Corporate Water Management

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1011 https://www.usom.gov.tr/bildirim/tr-24-1011