Critical severity9.8NVD Advisory· Published Jul 18, 2024· Updated Jun 3, 2026

CVE-2024-0857

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection.

This issue affects FlexWater Corporate Water Management: before 5.452.0.

Affected products

Universal Software Inc./FlexWater Corporate Water Managementllm-fuzzy2 versions
<5.452.0+ 1 more
- (no CPE)range: <5.452.0
- (no CPE)range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.usom.gov.tr/bildirim/tr-24-1011nvdThird Party Advisory
siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1011nvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000