ГлавнаяУязвимости → CVE-2024-13151
9.8критическая

CVE-2024-13151

Описание

CWE - 89 - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in ESBI Information and Telecommunication Industry and Trade Limited Company Auto Service Software allows SQL Injection. This issue affects Auto Service Software: before v.2025.10.01.

CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0273https://www.usom.gov.tr/bildirim/tr-25-0273