← back
CVE-2024-7488

Business Logic Error in RestApp Inc.'s Online Ordering System

CVSS 5.3 MEDIUMEPSS 0.3%CWE-1284CWE-190
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 5.3EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
04 Dec 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Integer Overflow or Wraparound, Improper Validation of Specified Quantity in Input vulnerability in RestApp Inc. Online Ordering System allows Integer Attacks. This issue affects Online Ordering System: 8.2.1. NOTE: Vulnerability fixed in version 8.2.2 and does not exist before 8.2.1.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Affected products
RestApp Inc. · Online Ordering System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1877https://www.usom.gov.tr/bildirim/tr-24-1877