4 matches found
CVE-2024-8997
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection. This issue affects EVC04 Configuration Interface: before V3.187, V4.53...
CVE-2024-8997
creationtimestamp| type| source ---|---|--- 2025-03-18 14:40:27+00:00| seen| https://bsky.app/profile/cyberalerts.bsky.social/post/3lknvlf7qmm2m 2025-03-18 15:48:48+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114184220017475135 2025-03-18 17:18:26+00:00| seen|...
CVE-2024-8997
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection. This issue affects EVC04 Configuration Interface: before V3.187, V4.53...
CVE-2024-8997
CVE-2024-8997 is an SQL injection vulnerability in Vestel EVC04 Configuration Interface. The flaw arises from improper neutralization of special elements in SQL commands, affecting EVC04 UI prior to versions 3.187 and 4.53. It enables network-level, unauthenticated abuse with full impact on confi...