CVE-2024-7488

Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer Attacks.This issue affects Online Ordering System: 8.2.1. NOTE: Vulnerability fixed in version 8.2.2 and does not exist before 8.2.1.

CVSS v3 5.3 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://www.usom.gov.tr/bildirim/tr-24-1877

Configurations

No configuration.

History

05 Dec 2024, 08:15

Type	Values Removed	Values Added
Summary		(es) La vulnerabilidad de validación de entrada incorrecta en RestApp Inc. Online Ordering System permite ataques con números enteros. Este problema afecta al sistema de pedidos en línea 8.2.1. NOTA: La vulnerabilidad se corrigió en la versión 8.2.2 y no existía antes de la 8.2.1.
Summary	(en) Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer Attacks.This issue affects Online Ordering System: through 04.12.2024. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.	(en) Improper Input Validation vulnerability in RestApp Inc. Online Ordering System allows Integer Attacks.This issue affects Online Ordering System: 8.2.1. NOTE: Vulnerability fixed in version 8.2.2 and does not exist before 8.2.1.

Information

Published : 2024-12-04 14:15

Updated : 2024-12-05 08:15

NVD link : CVE-2024-7488

Mitre link : CVE-2024-7488

CVE.ORG link : CVE-2024-7488

JSON object : View

Products Affected

No product.

CWE

CWE-20

Improper Input Validation

CWE-190

Integer Overflow or Wraparound

5.3 /10