CVE-2024-54261

CVSS 3.1 Score 10 of 10 (high)

Details

Published Dec 13, 2024
CWE ID 89

Summary

CVE-2024-54261 is a new SQL Injection vulnerability affecting HK Digital Agency LLC's TAX SERVICE Electronic HDM. The flaw, which allows the injection of malicious SQL commands, can be exploited to access sensitive data or even take control of the affected system. SQL Injection attacks occur when user input is not properly neutralized, allowing attackers to inject malicious code into SQL statements. HK Digital Agency LLC's TAX SERVICE Electronic HDM is reportedly vulnerable from version n/a through 1.1.2. Organizations using this software are urged to apply the necessary patches as soon as possible to mitigate the risk of an SQL Injection attack.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share