CVE-2022-0495

CRITICAL(9.4)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Risk Signal Score24/100 — NIEDRIG

CVSS 9.4 — Kritisch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

9.4

Technische Schwere

Beschreibung

The library automation system product KOHA developed by Parantez Teknoloji before version 19.05.03 has an unauthenticated SQL Injection vulnerability. This has been fixed in the version 19.05.03.01.

Referenzen

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-22-0635
https://www.usom.gov.tr/bildirim/tr-22-0635
https://www.usom.gov.tr/bildirim/tr-22-0635