CVE-2024-7071

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'), CWE - 564 - SQL Injection: Hibernate vulnerability in Brain Information Technologies Inc. Brain Low-Code allows SQL Injection.This issue affects Brain Low-Code: before 2.1.0.
References
Link Resource
https://www.usom.gov.tr/bildirim/tr-24-1349 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:brainlowcode:brain_low-code:*:*:*:*:*:*:*:*

History

30 Aug 2024, 13:56

Type Values Removed Values Added
CPE cpe:2.3:a:brainlowcode:brain_low-code:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
References () https://www.usom.gov.tr/bildirim/tr-24-1349 - () https://www.usom.gov.tr/bildirim/tr-24-1349 - Third Party Advisory
Summary
  • (es) Neutralización inadecuada de elementos especiales utilizados en un comando SQL ("Inyección SQL"), CWE - 564 - Inyección SQL: Vulnerabilidad de hibernación en Brain Information Technologies Inc. Brain Low-Code permite la inyección SQL. Este problema afecta a Brain Low-Code: antes de 2.1 .0.
First Time Brainlowcode
Brainlowcode brain Low-code

27 Aug 2024, 14:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-27 14:15

Updated : 2024-08-30 13:56


NVD link : CVE-2024-7071

Mitre link : CVE-2024-7071

CVE.ORG link : CVE-2024-7071


JSON object : View

Products Affected

brainlowcode

  • brain_low-code
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')