CVE-2023-4675

CRITICAL(9.8)

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Risk Signal Score25/100 — MITTEL

CVSS 9.8 — Kritisch

EPSS-Score

Exploit-Wahrscheinlichkeit (30 Tage)

CVSS Score

9.8

Technische Schwere

Beschreibung

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in GM Information Technologies MDO allows SQL Injection. This issue affects MDO: through 20231229. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Referenzen

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0742
https://www.usom.gov.tr/bildirim/tr-23-0742
https://www.usom.gov.tr/bildirim/tr-23-0742