CVE advisoryCRITICAL
CVE-2024-0851
Smartpower SQL Injection Vulnerability.
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
An SQL injection vulnerability affects an energy management system, allowing attackers to manipulate data by inserting malicious commands. This poses a risk of unauthorized access, data compromise, and operational disruption for organizations using the affected system. Mitigation involves identifying vulnerable systems