Lucene search

[email protected]CVE-2023-34735

HistoryJun 29, 2023 - 2:15 p.m.

CVE-2023-34735

2023-06-2914:15:09

CWE-89

[email protected]

web.nvd.nist.gov

cve-2023-34735

property cloud platform

management center

sql injection

vulnerability

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.9%

JSON

Property Cloud Platform Management Center 1.0 is vulnerable to error-based SQL injection.

Affected configurations

NVD

Node

property_cloud_platform_management_center_projectproperty_cloud_platform_management_centerMatch1.0

CPENameOperatorVersion
property_cloud_platform_management_center_project:property_cloud_platform_management_centerproperty cloud platform management center project property cloud platform management centereq1.0

CPE	Name	Operator	Version
property_cloud_platform_management_center_project:property_cloud_platform_management_center	property cloud platform management center project property cloud platform management center	eq	1.0

References

github.com/prismbreak/vulnerabilities/issues/4

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

39.9%

JSON

Related for CVE-2023-34735

nvd1 cvelist1 prion1