Vulnerabilities > CVE-2024-12146

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

CWE-1286

NVD

Published: 2025-03-06

Updated: 2025-03-06

Summary

Improper Validation of Syntactic Correctness of Input vulnerability in Finder Fire Safety Finder ERP/CRM (New System) allows SQL Injection.This issue affects Finder ERP/CRM (New System): before 18.12.2024.

Common Weakness Enumeration (CWE)

CWE-1286 - Improper Validation of Syntactic Correctness of Input

References

https://www.usom.gov.tr/bildirim/tr-25-0060

Vulnerabilities > CVE-2024-12146 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2024-12146"}]}

Summary

Common Weakness Enumeration (CWE)

References

Vulnerabilities > CVE-2024-12146