COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2024-38889

CVE-2024-38889

Severity
critical
Source
NVD · cve
Published
2024-08-02
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2024-38889
⚡ RCE shame 50/100 rce

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform SQL Injection due to improper neutralization of special elements used in an SQL command.

Players implicated

horizoncloud · vendorcaterease · product

Description

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform SQL Injection due to improper neutralization of special elements used in an SQL command.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.