Critical severity9.8NVD Advisory· Published Dec 18, 2024· Updated Apr 15, 2026

CVE-2024-4995

Description

Wapro ERP Desktop is vulnerable to MS SQL protocol downgrade request from a server side, what could lead to an unencrypted communication vulnerable to data interception and modification. This issue affects Wapro ERP Desktop versions before 9.00.0.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert.pl/en/posts/2024/12/CVE-2024-4995/nvd
cert.pl/posts/2024/12/CVE-2024-4995/nvd
wapro.plnvd

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000