Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection. This issue affects FlexWater Corporate Water Management: before 5.452.0.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact total

Affected Vendors & Products

Vendors Products
Uni-yaz
  • Flexwater Corporate Water Management
Universal Software Inc
  • Flexwater Corporate Water Management

Configuration 1 [-]

cpe:2.3:a:uni-yaz:flexwater_corporate_water_management:*:*:*:*:*:*:*:*

No data.

References
Link Providers
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1011 cve-icon cve-icon
https://www.usom.gov.tr/bildirim/tr-24-1011 cve-icon cve-icon
History

Wed, 03 Jun 2026 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Universal Software Inc
Universal Software Inc flexwater Corporate Water Management
CPEs cpe:2.3:a:universal_software_inc:flexwater_corporate_water_management:*:*:*:*:*:*:*:*
Vendors & Products Universal Software Inc
Universal Software Inc flexwater Corporate Water Management
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Wed, 03 Jun 2026 16:00:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection.This issue affects FlexWater Corporate Water Management: before 5.452.0. Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Universal Software Inc. FlexWater Corporate Water Management allows SQL Injection. This issue affects FlexWater Corporate Water Management: before 5.452.0.
References

Thu, 22 Aug 2024 17:45:00 +0000

Type Values Removed Values Added
First Time appeared Uni-yaz
Uni-yaz flexwater Corporate Water Management
CPEs cpe:2.3:a:uni-yaz:flexwater_corporate_water_management:*:*:*:*:*:*:*:*
Vendors & Products Uni-yaz
Uni-yaz flexwater Corporate Water Management
cve-icon MITRE

Status: PUBLISHED

Assigner: TR-CERT

Published: 2024-07-18T17:32:35.662Z

Updated: 2026-06-03T14:38:41.970Z

Reserved: 2024-01-24T11:54:56.046Z

Link: CVE-2024-0857

cve-icon Vulnrichment

Updated: 2024-08-01T18:18:18.811Z

cve-icon NVD

Status : Modified

Published: 2024-07-18T18:15:05.177

Modified: 2026-06-03T16:16:19.217

Link: CVE-2024-0857

cve-icon Redhat

No data.