CVE-2023-4661

CWE-89SQL Injection3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.2%
top 59.12%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Saphira Saphira ConnectAdobe Connect
Timeline
PublishedSep 15

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saphira Saphira Connect allows SQL Injection.This issue affects Saphira Connect: before 9.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

NVDadobe/connect< 9.0

🔴Vulnerability Details

2
GHSA
GHSA-2mfc-5569-842h: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Saphira Saphira Connect allows SQL Injection2023-09-15
CVEList
SQLi in Saphira Connect2023-09-15
CVE-2023-4661 (CRITICAL CVSS 9.8) | Improper Neutralization of Special | cvebase.io