Vulnerability Details CVE-2024-44757
An arbitrary file download vulnerability in the component /Basics/DownloadInpFile of NUS-M9 ERP Management Software v3.0.0 allows attackers to download arbitrary files and access sensitive information via a crafted interface request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.0%
CVSS Severity
CVSS v3 Score 7.5
References
Products affected by CVE-2024-44757
-
cpe:2.3:a:nuserp:nus-m9_erp:3.0.0