CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-57768

JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component validRoleKey?sysRole.key.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.1%

CVSS Severity

CVSS v3 Score 9.8

References

https://gitee.com/r1bbit/JFinalOA/issues/IBHUMT

Products affected by CVE-2024-57768

Jfinaloa Project » Jfinaloa » Version: 1.0

cpe:2.3:a:jfinaloa_project:jfinaloa:1.0
Jfinaloa Project » Jfinaloa » Version: 1.0.1

cpe:2.3:a:jfinaloa_project:jfinaloa:1.0.1
Jfinaloa Project » Jfinaloa » Version: 1.0.2

cpe:2.3:a:jfinaloa_project:jfinaloa:1.0.2
Jfinaloa Project » Jfinaloa » Version: 1.1

cpe:2.3:a:jfinaloa_project:jfinaloa:1.1
Jfinaloa Project » Jfinaloa » Version: 2021-09-07

cpe:2.3:a:jfinaloa_project:jfinaloa:2021-09-07

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved