Skip to content

CVE-2023-2963 | Oliva Expertise EKS

Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in Oliva Expertise Oliva Expertise EKS allows SQL Injection.This issue affects Oliva Expertise EKS: before 1.2. .This CVE has a CVSS3.1 score of 9.8 and a Base Severity of CRITICAL.

InfoDetails
CVE IDCVE-2023-2963
CVE StatePUBLISHED
BaseScore9.8
BaseSeverityCRITICAL
VectorStringCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
VersionNA

References for CVE-2023-2963 :
https://www.usom.gov.tr/bildirim/tr-23-0409

Metric TypeMetric Score
AttackVector(AV)NETWORK
AttackComplexity(AC)LOW
PrivilegesRequired(PR)NONE
UserInteraction(UI)NONE
Scope(S)UNCHANGED
Confidentiality(C)HIGH
Availability(A)HIGH
Integrity(I)HIGH
Tags: