CVE-2023-48372
CVSS 3.1 Score 9.8 of 10 (high)
Details
Published Dec 15, 2023
Updated: Dec 22, 2023
CWE ID 89
Summary
CVE-2023-48372 is a vulnerability affecting ITPison OMICARD EDM's SMS function. The issue stems from insufficient input validation, which allows an unauthenticated attacker to inject arbitrary SQL commands. By exploiting this vulnerability, an attacker can gain unauthorized access to, modify, or delete database information. This vulnerability poses a significant risk to organizations using ITPison OMICARD EDM and highlights the importance of input validation in securing applications.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share