Vulnerability in Munyweki Insurance_management_system
CVE-2024-2150
A vulnerability, which was classified as critical, has been found in SourceCodester Insurance Management System 1.0. This issue affects some unknown processing. The manipulation of the argument page leads to file inclusion. The attack may…
EPSS: 0.006 (44.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N.
Affected products
- Munyweki Insurance_management_system — versions 1.0
- Sourcecodester Insurance Management System — versions 1.0
Weakness classification (CWE)
References
- cna@vuldb.com (technical-description, VDB Entry, Third Party Advisory, vdb-entry)
- cna@vuldb.com (signature, Permissions Required, permissions-required, VDB Entry)
- cna@vuldb.com (exploit, Broken Link)
Frequently asked questions
- What is CVE-2024-2150?
- CVE-2024-2150 is a medium-severity vulnerability in Munyweki Insurance_management_system, classified under External Control of File Name or Path. CVSS score: 5.3/10. Published 2024-03-03.
- How severe is CVE-2024-2150?
- Medium severity. CVSS v3 base score is 5.3 out of 10.