Back to search
CVE-2024-6400
Published: Oct 4, 2024
Modified: Jun 3, 2026
PUBLISHED
Description
Cleartext Storage of Sensitive Information, Exposure of Sensitive Information Through Data Queries vulnerability in Finrota Netahsilat allows Retrieve Embedded Sensitive Data, Authentication Bypass, IMAP/SMTP Command Injection, Collect Data from Common Resource Locations. This issue solved in versions 1.21.10, 1.23.01, 1.23.08, 1.23.11 and 1.24.03.
| Vendor | Product | Versions |
|---|---|---|
Finrota | Netahsilat | unaffected 1.23.11unaffected 1.23.08unaffected 1.23.01unaffected 1.21.10unaffected 1.24.03 |
References
https://www.usom.gov.tr/bildirim/tr-24-1611
government-resource
broken-link
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-24-1611
government-resource
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now