Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistDEVOLUTIONSCVELIST:CVE-2023-0953
HistoryFeb 22, 2023 - 1:42 p.m.

CVE-2023-0953

2023-02-2213:42:04
DEVOLUTIONS
www.cve.org
2
sql injection
unauthorized access
documentation feature
devolutions server

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

35.4%

JSON

Insufficient input sanitization in the documentation feature of Devolutions Server 2022.3.12 and earlier allows an authenticated attacker to perform an SQL Injection, potentially resulting in unauthorized access to system resources.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Devolutions Server",
    "vendor": "Devolutions",
    "versions": [
      {
        "lessThanOrEqual": "2022.3.12",
        "status": "affected",
        "version": "0",
        "versionType": "custom"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
cve
cve
CVE-2023-0953
2023-03-01 08:15:11
nvd
nvd
CVE-2023-0953
2023-03-01 08:15:11
prion
prion
Sql injection
2023-03-01 08:15:00

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

35.4%

JSON
Related for CVELIST:CVE-2023-0953
cve1nvd1prion1