CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-38891

An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Sniffing Network Traffic attack due to the cleartext transmission of sensitive information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.3%

CVSS Severity

CVSS v3 Score 7.5

References

http://caterease.com
http://horizon.com
https://packetstormsecurity.com/files/179892/Caterease-Software-SQL-Injection-Command-Injection-Bypass.html
https://vuldb.com/?id.273375

Products affected by CVE-2024-38891

Horizoncloud » Caterease » Version: 16.0.1.1663

cpe:2.3:a:horizoncloud:caterease:16.0.1.1663
Horizoncloud » Caterease » Version: 24.0.1.2405

cpe:2.3:a:horizoncloud:caterease:24.0.1.2405

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-38891

Products

Pricing

Contact Us