CVE-2024-4995 | Asseco Business Solutions Wapro ERP Desktop up to 8.x MS SQL Protocol missing encryption

Inserito da Angelo Barbosa | Dic 18, 2024 | CVE

A vulnerability was found in Asseco Business Solutions Wapro ERP Desktop up to 8.x. It has been classified as problematic. This affects an unknown part of the component MS SQL Protocol Handler. The manipulation leads to missing encryption of sensitive data.

This vulnerability is uniquely identified as CVE-2024-4995. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-4995 | Asseco Business Solutions Wapro ERP Desktop up to 8.x MS SQL Protocol missing encryption

Post correlati

CVE-2024-25048 | IBM MQ Appliance 9.3 heap-based overflow (XFDB-283137)

CVE-2024-36232 | Adobe Experience Manager up to 6.5.20 cross site scripting (apsb24-28)

CVE-2024-32638 | Apache APISIX 3.8.0/3.9.0 forward-auth Plugin request smuggling

CVE-2024-53261 | sveltejs kit up to 2.8.2 index.js cross site scripting