CVE-2024-6218

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 21, 2024
CWE ID 89

Summary

CVE-2024-6218 is a newly disclosed critical vulnerability affecting the Vehicle Management System 1.0. The issue lies in the file busprofile.php, where manipulation of the argument busid can lead to SQL injection. This vulnerability allows remote attackers to exploit the system, making it a significant security concern. The exploit for this vulnerability, identified as VDB-269282, has been made public, increasing the risk of potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share