CVSS Score of 10 (low)


Published Jul 10, 2023
Updated: Jul 14, 2023


CVE-2023-2852 is an SQL Injection vulnerability found in Softmed SelfPatron version 2.0 and earlier. This vulnerability allows attackers to inject malicious SQL commands into the database, potentially leading to unauthorized access, data manipulation, or remote code execution. The exploitability score is 3.9 out of 10, indicating a high likelihood of successful exploitation. The base severity is rated as critical with a score of 9.8 out of 10, highlighting the significant impact on confidentiality, integrity, and availability. It is crucial for organizations using Softmed SelfPatron to upgrade to a patched version or apply necessary security measures to mitigate the risk associated with this vulnerability.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-2852 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options