Vendor
critical
advisory
Critical SQL Injection Vulnerability in Adam Retail Automation MobilMen 20T
2 TTPs 1 CVEA critical SQL injection vulnerability, tracked as CVE-2026-2397 with a CVSS v3.1 score of 9.8, affects Adam Retail Automation Ltd.'s MobilMen 20T software, allowing remote attackers to execute arbitrary SQL commands due to improper neutralization of special elements in input, potentially leading to unauthorized data access or system compromise.
MobilMen 20T
sql-injection
vulnerability
cve
data-exfiltration
2t
1c
high
advisory
CVE-2026-2398: Authorization Bypass Leads to Privilege Escalation in Adam Retail Automation MobilMen 20T
1 TTP 1 CVEAn authorization bypass vulnerability, identified as CVE-2026-2398, exists in Adam Retail Automation Ltd.'s MobilMen 20T software, affecting versions from v3 through 10072026, allowing an attacker to achieve privilege escalation by manipulating user-controlled keys.
MobilMen 20T
authorization-bypass
privilege-escalation
vulnerability
CVE
1t
1c