CVE-2023-38870

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Sep 28, 2023
Updated: Oct 3, 2023
CWE ID 89

Summary

CVE-2023-38870 is a SQL injection vulnerability found in gugoan Economizzer versions 3730880 and v.0.9-beta1. This vulnerability affects the cash book feature that lists accomplishments by category, with the 'category_id' parameter being susceptible to SQL Injection. The affected products are 't5UtEn' and 't5UtEm'. The risk score is 65, and the base severity is classified as CRITICAL with a base score of 9.8 out of 10. The potential danger to an organization includes high integrity and confidentiality impacts, as well as a significant availability impact. Remediation measures are not provided in the information given.

Leverage our Vulnerability Intelligence module to secure your systems now - get detailed insights on CVE-2024-37364. Book your demo today.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-38870 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options