3 matches found
CVE-2023-3864 SQL injection vulnerability in Snow License Manager
Blind SQL injection in a service running in Snow Software license manager from version 8.0.0 up to and including 9.30.1 on Windows allows a logged in user with high privileges to inject SQL commands via the web portal...
CVE-2023-3864 SQL injection vulnerability in Snow License Manager
Blind SQL injection in a service running in Snow Software license manager from version 8.0.0 up to and including 9.30.1 on Windows allows a logged in user with high privileges to inject SQL commands via the web portal...
CVE-2023-3864
CVE-2023-3864 describes a blind SQL injection vulnerability in the Snow Software License Manager web portal. Affected versions are 8.0.0 through 9.30.1 on Windows. The issue allows a logged-in user with high privileges to inject SQL commands via the web portal, with impacts on confidentiality, in...