How severe is CVE-2024-47911?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.7 out of 10.

What type of vulnerability is CVE-2024-47911?

This is classified as CWE-89, which is a common weakness in software security.

CVE-2024-47911

MEDIUM Year: 2024

CVSS v3 Score

6.7

Medium

Weakness Type

CWE-89

View all →

Vulnerability Description

In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the authorizations/group-memberships API endpoint that allows SonarQube users with the administrator role to inject blind SQL commands.

CVE-2020-3184

MEDIUM

CVSS:6.7(Medium)

A vulnerability in the web-based management interface of Cisco Prime Collaboration Provisioning Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected s...

CWE-892020

CVE-2022-0362

MEDIUM

CVSS:6.7(Medium)

SQL Injection in Packagist showdoc/showdoc prior to 2.10.3.

CWE-892022

CVE-2023-0620

MEDIUM

CVSS:6.7(Medium)

HashiCorp Vault and Vault Enterprise versions 0.8.0 through 1.13.1 are vulnerable to an SQL injection attack when configuring the Microsoft SQL (MSSQL) Database Storage Backend. When configuring the M...

CWE-892023

CVE-2023-1578

MEDIUM

CVSS:6.7(Medium)

SQL Injection in GitHub repository pimcore/pimcore prior to 10.5.19.

CWE-892023

CVE-2023-46806

MEDIUM

CVSS:6.7(Medium)

An SQL Injection vulnerability in a web component of EPMM versions before 12.1.0.0 allows an authenticated user with appropriate privilege to access or modify data in the underlying database.

CWE-892023

CVE-2023-46807

MEDIUM

CVSS:6.7(Medium)

An SQL Injection vulnerability in web component of EPMM before 12.1.0.0 allows an authenticated user with appropriate privilege to access or modify data in the underlying database.

CWE-892023

CVE-2024-47911

Vulnerability Description

Related Vulnerabilities

CVE-2020-3184

CVE-2022-0362

CVE-2023-0620

CVE-2023-1578

CVE-2023-46806

CVE-2023-46807