CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-8997

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Vestel EVC04 Configuration Interface allows SQL Injection.This issue affects EVC04 Configuration Interface: before V3.187, V4.53.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://www.usom.gov.tr/bildirim/tr-25-0070

Products affected by CVE-2024-8997

Vestel » Evc04 Configuration Interface » Version: 18.03.2025

cpe:2.3:a:vestel:evc04_configuration_interface:18.03.2025

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-8997

Products

Pricing

Contact Us