CVE-2023-21412

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Aug 3, 2023

Updated: Aug 7, 2023

CWE ID 89

Summary

CVE-2023-21412 is a vulnerability affecting the AXIS License Plate Verifier's "search.cgi" feature. The issue stems from insufficient input sanitization, resulting in SQL injection vulnerabilities. An attacker can exploit this flaw by providing malicious user input, potentially gaining unauthorized access to sensitive data or even taking control of the system. This vulnerability poses a significant risk, emphasizing the importance of proper input validation to protect against SQL injection attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sNOmIO
https://www.cve.org/CVERecord?id=CVE-2023-21412
https://nvd.nist.gov/vuln/detail/CVE-2023-21412

Back to Vulnerability Database

CVE-2023-21412

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations