CVE-2024-9040

LOW

Blood Bank Management System 1.0 - Info Disclosure

Title source: llm

Description

A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation leads to cleartext storage in a file or on disk. An attack has to be approached locally.

References (3)

[Third Party Advisory, VDB Entry] https://vuldb.com/?id.278211

[Permissions Required, Third Party Advisory, VDB Entry] https://vuldb.com/?ctiid.278211

[Product] https://code-projects.org/

Scores

CVSS v3 2.3

EPSS 0.0001

EPSS Percentile 3.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-312 CWE-313

Status published

Products (1)

code-projects/blood_bank_management_system 1.0

Published Sep 20, 2024

Tracked Since Feb 18, 2026