CVE-2023-35071
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Sep 27, 2023
Updated: Sep 28, 2023
CWE ID 89
Summary
CVE-2023-35071 is a vulnerability affecting the MRV Tech Logging Administration Panel before version 20230915. This issue involves an SQL Injection flaw, where an attacker can manipulate malicious SQL commands to extract or modify sensitive data. The vulnerability arises due to improper neutralization of special elements used in an SQL command, which can lead to unauthorized access or data breaches. Organizations using the affected Logging Administration Panel are advised to update to the latest version to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share