Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJpcertCVELIST:CVE-2023-29154
HistoryJun 01, 2023 - 12:00 a.m.

CVE-2023-29154

2023-06-0100:00:00
jpcert
www.cve.org
sql injection
conprosys hmi system
administrative privilege
arbitrary sql command
query setting page

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON

SQL injection vulnerability exists in the CONPROSYS HMI System (CHS) versions prior to 3.5.3. A user who can access the affected product with an administrative privilege may execute an arbitrary SQL command via specially crafted input to the query setting page.

CNA Affected

[
  {
    "vendor": "Contec Co., Ltd.",
    "product": "CONPROSYS HMI System (CHS)",
    "versions": [
      {
        "version": "versions prior to 3.5.3",
        "status": "affected"
      }
    ]
  }
]

Related

cve 1
nvd 1
prion 1
cve
cve
CVE-2023-29154
2023-06-01 02:15:09
nvd
nvd
CVE-2023-29154
2023-06-01 02:15:09
prion
prion
Sql injection
2023-06-01 02:15:00

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON
Related for CVELIST:CVE-2023-29154
cve1nvd1prion1