CVSS 3.1 Score 9.8 of 10 (high)


Published Mar 25, 2024


CVE-2024-2865 is a Critical vulnerability categorized as CWE-89 (Improper Neutralization of Special Elements used in an SQL Command) affecting Mergen Software Quality Management System. This vulnerability allows for SQL Injection attacks and has a base severity score of 9.8 out of 10. The exploitability score is 3.9, indicating a medium level of difficulty for attackers. The impact includes high integrity and confidentiality impact, with the potential danger posed to organizations being significant. The vulnerability persists in the system through March 25, 2024, but there is no information on how to remediate it or any known exploits at this time.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2865 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options