CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-38884

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a local attacker to perform an Authentication Bypass attack due to improperly implemented security checks for standard authentication mechanisms

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.6%

CVSS Severity

CVSS v3 Score 7.8

References

http://caterease.com
http://horizon.com
https://packetstormsecurity.com/files/179892/Caterease-Software-SQL-Injection-Command-Injection-Bypass.html
https://vuldb.com/?id.273368

Products affected by CVE-2024-38884

Horizoncloud » Caterease » Version: 16.0.1.1663

cpe:2.3:a:horizoncloud:caterease:16.0.1.1663
Horizoncloud » Caterease » Version: 24.0.1.2405

cpe:2.3:a:horizoncloud:caterease:24.0.1.2405

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-38884

Products

Pricing

Contact Us