CVE-2024-54215

CVSS 3.1 Score 9.3 of 10 (high)

Details

Published Dec 9, 2024
Updated: Dec 20, 2024
CWE ID 89

Summary

CVE-2024-54215 represents a significant SQL Injection vulnerability discovered in the Revy software by Roninwp. This issue allows malicious actors to inject malicious SQL commands into the application, potentially compromising sensitive data. The flaw affects all Revy versions from n/a through 1.18. To mitigate this risk, it is recommended that users upgrade to the latest, secure version of the software as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share