Browse all 4 CVE security advisories affecting Talya Informatics. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Talya Informatics develops enterprise software solutions for data management and analytics. Historically, their products have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, with four CVEs documented to date. The company's security posture has shown inconsistent patch management practices, leaving some systems exposed to known exploits. While no major public security incidents have been reported, the recurring nature of certain vulnerability classes suggests potential gaps in their secure development lifecycle. Organizations utilizing Talya Informatics solutions should prioritize timely updates and implement additional security controls to mitigate identified risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-1153 | SQL Injection Vulnerability in Talya Informatics' Travel APPS — Travel APPSCWE-89 | 4.6 | Medium | 2024-06-27 |
| CVE-2024-1107 | IDOR in Talya Informatics' Travel APPS — Travel APPSCWE-639 | 9.8 | Critical | 2024-06-27 |
| CVE-2024-0949 | Improper Access Control in Talya Informatics' Elektraweb — ElektrawebCWE-306 | 9.8 | Critical | 2024-06-27 |
| CVE-2024-0947 | Cookies Manipulation in Talya Informatics' Elektraweb — ElektrawebCWE-565 | 9.8 | Critical | 2024-06-27 |
This page lists every published CVE security advisory associated with Talya Informatics. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.