CVE-2024-7076

Name of the Vulnerable Software and Affected Versions Semtek Sempos versions through 31072024

Description The issue is related to an SQL Injection vulnerability, specifically a Blind SQL Injection, which affects Semtek Sempos. This vulnerability is due to the improper neutralization of special elements used in an SQL command.

Recommendations For Semtek Sempos versions through 31072024, consider disabling any functionality that allows user input to be executed as SQL commands until a patch is available. Restrict access to sensitive data and modules to minimize the risk of exploitation. Avoid using user-supplied input in SQL queries to prevent injection attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.