CVE-2024-1153

MEDIUM(4.6)

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Risk Signal Score12/100 — NIEDRIG

CVSS 4.6 — Mittel

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

4.6

Technische Schwere

Beschreibung

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Talya Informatics Travel APPS allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Travel APPS: before v17.0.68.

Referenzen

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-0809
https://www.usom.gov.tr/bildirim/tr-24-0809
https://www.usom.gov.tr/bildirim/tr-24-0809