CVE-2023-6097
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 13, 2023
Updated: Nov 17, 2023
CWE ID 89
Summary
CVE-2023-6097 represents a SQL injection vulnerability in ICS Business Manager, impacting version 7.06.0028.7089. An attacker can exploit this flaw to send crafted SQL queries that could gain unauthorized access to the entire database, potentially leading to data manipulation or deletion. Consequently, the application may malfunction, posing a significant risk to data integrity and system functionality.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share