ГлавнаяУязвимости → CVE-2024-0857
9.8критическая

CVE-2024-0857

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection. This issue affects FlexWater Corporate Water Management: before 5.452.0.

Затрагиваемое ПО
Uni-yaz Flexwater corporate water management
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1011https://www.usom.gov.tr/bildirim/tr-24-1011https://www.usom.gov.tr/bildirim/tr-24-1011