VYPR
Unrated severityNVD Advisory· Published Jan 14, 2025· Updated Jan 14, 2025

CVE-2024-52969

CVE-2024-52969

Description

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability [CWE-89] in FortiSIEM ersion 7.1.7 and below, version 7.1.0, version 7.0.3 and below, version 6.7.9 and below, 6.7.8, version 6.6.5 and below, version 6.5.3 and below, version 6.4.4 and below Update/Create Case feature may allow an authenticated attacker to extract database information via crafted requests.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Fortinet/FortiSIEMllm-fuzzy2 versions
    <=7.1.7; <=7.1.0; <=7.0.3; <=6.7.9; 6.7.8; <=6.6.5; <=6.5.3; <=6.4.4+ 1 more
    • (no CPE)range: <=7.1.7; <=7.1.0; <=7.0.3; <=6.7.9; 6.7.8; <=6.6.5; <=6.5.3; <=6.4.4
    • (no CPE)range: 7.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.