High severity8.4NVD Advisory· Published Aug 2, 2024· Updated Jun 17, 2026
CVE-2024-38890
CVE-2024-38890
Description
An issue in Horizon Business Services Inc. Caterease Software 16.0.1.1663 through 24.0.1.2405 and possibly later versions allows a local attacker to perform an Authentication Bypass by Capture-replay attack due to insufficient protection against capture-replay attacks.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 16.0.1.1663 - 24.0.1.2405
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/179892/Caterease-Software-SQL-Injection-Command-Injection-Bypass.htmlnvdThird Party Advisory
- vuldb.comnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.