CVE-2023-4292

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Sep 21, 2023

Updated: Sep 22, 2023

Summary

CVE-2023-4292: The Frauscher Sensortechnik FDS101 device for FAdC/FAdCi versions 1.4.24 and prior is susceptible to a SQL injection vulnerability. Hackers can exploit this issue by inputting malicious SQL statements into manipulated web interface parameters, gaining unauthorized access to the system's database with limited, non-critical log information. This vulnerability poses a risk even without authentication, making it essential for users to update their software to mitigate the threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Apple (iPhone OS)
iPadOS
MacOS

Affected Vendors

Apple

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/ssAfnH
https://www.cve.org/CVERecord?id=CVE-2023-4292
https://nvd.nist.gov/vuln/detail/CVE-2023-4292

Back to Vulnerability Database