CVE-2024-38886
CRITICALDescription
An issue in Horizon Business Services Inc. Caterease 16.0.1.1663 through 24.0.1.2405 and possibly later versions, allows a remote attacker to perform a Traffic Injection attack due to improper verification of the source of a communication channel.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| horizoncloud | caterease |
References
Frequently Asked Questions
What is CVE-2024-38886? +
How severe is CVE-2024-38886? +
What products are affected by CVE-2024-38886? +
How do I check if I'm vulnerable to CVE-2024-38886? +
Related Vulnerabilities
Tina is a headless content management system. In versions prior to @tinacms/app 2.5.6 and tinacms 3.9.3, cross-origin postMessage handlers and …
Some payload elements of the messages sent between two stations in a networking architecture are not properly checked on the …
Lanscope Endpoint Manager (On-Premises) (Client program (MR) and Detection agent (DA)) improperly verifies the origin of incoming requests, allowing an …
An issue in SHENZHEN TENDA TECHNOLOGY CO.,LTD Tenda AX2pro V16.03.29.48_cn allows a remote attacker to execute arbitrary code via the …
SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation …
Traccar Client is a GPS tracking mobile app for sending location updates to private servers using the open-source Traccar platform. …