NVD disclosure day
CVE-2024-0857
Halo Surface Signal: 3 out of 5 — possibly public-facing.
A SQL injection vulnerability exists in Universal Software Inc. FlexWater Corporate Water Management, allowing attackers to manipulate database commands. This could result in unauthorized access to or modification of sensitive data, impacting organizational systems and business risk.
CVE-2024-5619
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in the Apinizer Management Console allows unauthorized access due to bypassed access controls. This can lead to unauthorized modification of data and compromise of sensitive information, impacting system confidentiality and integrity. The realistic business risk involves potential data breaches and unau
CVE-2024-5618
Halo Surface Signal: 4 out of 5 — likely to be public-facing.
A vulnerability in the Apinizer Management Console allows unauthorized access to functionalities due to incorrect permission assignments. This poses a risk of data compromise and operational disruption to affected organizations. The issue is exploitable over the network with low privileges.