NewsSecurity Vulnerabilities

NAC Telecommunication Systems SQL Command Injection vulnerability [CVE-2024-6919]

CVE number = CVE-2024-6919

CVSS Score = 9.8

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in NAC Telecommunication Systems Inc.

NACPremium allows Blind SQL Injection.

This issue affects NACPremium: through 01082024.

Further information – https://www.usom.gov.tr/bildirim/tr-24-1376

Luke Simmonds

Blogger at www.systemtek.co.uk

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.