ГлавнаяУязвимости → CVE-2024-36393
9.9критическая

CVE-2024-36393

Описание

SysAid - CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Затрагиваемое ПО
Sysaid Sysaid
CVSS
Балл9.9 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Источники
https://www.gov.il/en/Departments/faq/cve_advisorieshttps://www.gov.il/en/Departments/faq/cve_advisories