CVE-2023-3983

Published: 2023-07-31T19:15Z

Last Modified: 2024-11-21T08:18Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

An authenticated SQL injection vulnerability exists in Advantech iView versions prior to v5.7.4 build 6752. An authenticated remote attacker can bypass checks in com.imc.iview.utils.CUtils.checkSQLInjection() to perform blind SQL injection. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt