Advantech iView < 5.7.4 blind SQLi via CUtils.checkSQLInjection bypass
CVE-2023-3983 Published on July 31, 2023

An authenticated SQL injection vulnerability exists in Advantech iView versions prior to v5.7.4 build 6752. An authenticated remote attacker can bypass checks in com.imc.iview.utils.CUtils.checkSQLInjection() to perform blind SQL injection.

NVD

Products Associated with CVE-2023-3983

Want to know whenever a new CVE is published for Advantech Iview? stack.watch will email you.

Advantech Iview

Exploit Probability

EPSS

0.12%

Percentile

31.11%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Advantech iView < 5.7.4 blind SQLi via CUtils.checkSQLInjection bypassCVE-2023-3983 Published on July 31, 2023

Products Associated with CVE-2023-3983

Exploit Probability

Advantech iView < 5.7.4 blind SQLi via CUtils.checkSQLInjection bypass
CVE-2023-3983 Published on July 31, 2023