Lucene search
HistoryApr 14, 2023 - 12:15 p.m.
CVE-2023-27649
sql injection
vulnerability
trusted tools free music
denial of service
search history table
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
38.1%
SQL injection vulnerability found in Trusted Tools Free Music v.2.1.0.47, v.2.0.0.46, v.1.9.1.45, v.1.8.2.43 allows a remote attacker to cause a denial of service via the search history table
Affected configurations
Node
bestoolstrusted_tools_free_musicMatch1.8.2.43android
ORbestoolstrusted_tools_free_musicMatch1.9.1.45android
ORbestoolstrusted_tools_free_musicMatch2.0.0.46android
ORbestoolstrusted_tools_free_musicMatch2.1.0.47android
| Vendor | Product | Version | CPE |
|---|---|---|---|
| bestools | trusted_tools_free_music | 1.8.2.43 | cpe:2.3:a:bestools:trusted_tools_free_music:1.8.2.43:*:*:*:*:android:*:* |
| bestools | trusted_tools_free_music | 1.9.1.45 | cpe:2.3:a:bestools:trusted_tools_free_music:1.9.1.45:*:*:*:*:android:*:* |
| bestools | trusted_tools_free_music | 2.0.0.46 | cpe:2.3:a:bestools:trusted_tools_free_music:2.0.0.46:*:*:*:*:android:*:* |
| bestools | trusted_tools_free_music | 2.1.0.47 | cpe:2.3:a:bestools:trusted_tools_free_music:2.1.0.47:*:*:*:*:android:*:* |
Related
cvelist
cvelist
CVE-2023-27649
2023-04-14 00:00:00
cve
cve
CVE-2023-27649
2023-04-14 12:15:07
prion
prion
Sql injection
2023-04-14 12:15:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.001
Percentile
38.1%
Related for NVD:CVE-2023-27649