CVE-2024-3617

CVSS 2.0 Score 5.8 of 10 (medium)

Details

Published Apr 11, 2024

Updated: Jun 4, 2024

CWE ID 89

Summary

CVE-2024-3617 is a critical vulnerability affecting the SourceCodester Kortex Lite Advocate Office Management System 1.0. The issue arises from a processing flaw in the file /control/deactivate_case.php. An attacker can exploit this vulnerability through sql injection by manipulating the argument id. This exploit can be initiated remotely, making it a significant threat. The vulnerability has been publicly disclosed, increasing the risk of exploitation, and it has been assigned the identifier VDB-260273. System administrators are urged to apply patches or updates as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/vT2AHX
https://www.cve.org/CVERecord?id=CVE-2024-3617
https://nvd.nist.gov/vuln/detail/CVE-2024-3617

Back to Vulnerability Database

CVE-2024-3617

CVSS 2.0 Score 5.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations