PT-2025-32641 · Smartclient · Soa Audit+2
Published
2025-08-12
·
Updated
2025-08-12
·
CVE-2024-41983
CVSS v3.1
4.3
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
SmartClient Opcenter QL Home (SC) versions 13.2 through 2505
SmartClient SOA Audit versions 13.2 through 2505
SmartClient SOA Cockpit versions 13.2 through 2505
Description:
The affected application displays SQL statements in error messages encountered during report generation using the Cockpit tool.
Recommendations:
SmartClient Opcenter QL Home (SC) versions 13.2 through 2505: Review error handling mechanisms to prevent the disclosure of SQL statements in error messages.
SmartClient SOA Audit versions 13.2 through 2505: Review error handling mechanisms to prevent the disclosure of SQL statements in error messages.
SmartClient SOA Cockpit versions 13.2 through 2505: Review error handling mechanisms to prevent the disclosure of SQL statements in error messages.
Fix
Generation of Error Message Containing Sensitive Information
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Opcenter Ql Home
Soa Audit
Soa Cockpit