HIGH✓ PATCH🇬🇧 English

CVE-2023-39980

CVSS 7.1v3.1pub. 2023-09-02upd. 2024-11-21

A vulnerability that allows the unauthorized disclosure of authenticated information has been identified in MXsecurity versions prior to v1.0.1. This vulnerability arises when special elements are not neutralized correctly, allowing remote attackers to alter SQL commands.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
  • Moxa Mxsecurity

    APP
    Moxa
    ≤ 1.0.1
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
SQLi
CWE
Referencje

Powiązane podatności

CVE-2023-39979CRITICAL9.8ten sam produkt

There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication....

CVE-2023-33236CRITICAL9.8ten sam produkt

MXsecurity version 1.0 is vulnearble to hardcoded credential vulnerability. This vulnerability has been report...

CVE-2023-39982HIGH7.5ten sam produkt

A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the conf...

CVE-2023-39981HIGH7.5ten sam produkt

A vulnerability that allows for unauthorized access has been discovered in MXsecurity versions prior to v1.0.1...

CVE-2023-33235HIGH7.2ten sam produkt

MXsecurity version 1.0 is vulnearble to command injection vulnerability. This vulnerability has been reported ...