CVE-2024-9079

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 22, 2024
Updated: Sep 26, 2024
CWE ID 89

Summary

CVE-2024-9079 is a critical vulnerability found in the Student Record System version 1.0, specifically affecting the processing of the file /marks.php, which allows for SQL injection through manipulation of the coursename argument. This vulnerability can be exploited remotely without requiring user interaction, posing a significant risk to an organization's data integrity and confidentiality. The potential impact includes unauthorized access to sensitive information, which could lead to extensive data breaches. To remediate this vulnerability, organizations should apply patches or updates provided by the developers and review their input validation processes to prevent SQL injection attacks. The CVSS score for this vulnerability is rated at 9.8, indicating its severity and the urgency for mitigation measures.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share