Insufficient input sanitization in the documentation feature of Devolutions Server 2022.3.12 and earlier allows an authenticated attacker to perform an SQL Injection, potentially resulting in unauthorized access to system resources.
References
Link | Resource |
---|---|
https://devolutions.net/security/advisories/DEVO-2023-0003 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: DEVOLUTIONS
Published: 2023-02-22T13:42:04.305Z
Updated: 2023-03-01T05:45:13.020935Z
Reserved: 2023-02-22T13:27:32.322Z
Link: CVE-2023-0953
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-01T08:15:11.713
Modified: 2023-11-07T04:02:00.917
Link: CVE-2023-0953
JSON object: View
Redhat Information
No data.
CWE