CVE-2024-55976

CVSS 3.1 Score 9.3 of 10 (high)

Details

Published Dec 16, 2024

CWE ID 89

Summary

CVE-2024-55976 is a new SQL Injection vulnerability that has been identified in Mike Leembruggen Critical Site Intel. This issue arises due to improper neutralization of special elements used in SQL commands. Attackers can exploit this vulnerability to inject malicious SQL statements and gain unauthorized access to sensitive data. The scope of this vulnerability includes Critical Site Intel versions from n/a through 1.0. Organizations using this software are advised to apply the necessary patches or upgrades as soon as possible to mitigate the risk of a potential attack.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/1lpIak
https://www.cve.org/CVERecord?id=CVE-2024-55976
https://nvd.nist.gov/vuln/detail/CVE-2024-55976

Back to Vulnerability Database

CVE-2024-55976

CVSS 3.1 Score 9.3 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations