CVE-2024-0857

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection.

This issue affects FlexWater Corporate Water Management: before 5.452.0.

Affected Software

VendorProductVersion RangeStatus
Universal Software Inc.FlexWater Corporate Water Management0 < 5.452.0affected

Weaknesses

  • CWE-89: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: total

CVE Program Container

Additional References

References