CVE-2023-33762

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jun 2, 2023

Updated: Jan 8, 2025

CWE ID 89

Summary

CVE-2023-33762 is a recently disclosed SQL injection vulnerability affecting eMedia Consulting's simpleRedak software up to version 2.47.23.05. An attacker can exploit this vulnerability by injecting malicious SQL code through the Activity parameter, potentially gaining unauthorized access to sensitive data or making unintended modifications to the database. This issue poses a serious threat to organizations using the affected software and requires immediate attention and patching to prevent potential data breaches or system compromises.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/rfAevK
https://www.cve.org/CVERecord?id=CVE-2023-33762
https://nvd.nist.gov/vuln/detail/CVE-2023-33762

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2023-33762

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations