CVE-2023-31615: SQL Injection
First published: Mon May 15 2023(Updated: )
An issue in the chash_array component of openlink virtuoso-opensource v7.2.9 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Openlinksw Virtuoso | =7.2.9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue in openlink virtuoso-opensource v7.2.9?
The vulnerability ID for this issue in openlink virtuoso-opensource v7.2.9 is CVE-2023-31615.
What is the severity of CVE-2023-31615?
The severity of CVE-2023-31615 is high with a score of 7.5.
How does CVE-2023-31615 impact openlink virtuoso-opensource v7.2.9?
CVE-2023-31615 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements in openlink virtuoso-opensource v7.2.9.
How can I fix CVE-2023-31615 in openlink virtuoso-opensource v7.2.9?
To fix CVE-2023-31615, it is recommended to update to a version of openlink virtuoso-opensource that is not affected by the vulnerability.
Where can I find more information about CVE-2023-31615?
You can find more information about CVE-2023-31615 at the following reference: https://github.com/openlink/virtuoso-opensource/issues/1124
- collector/nvd-index
- vendor/openlinksw
- canonical/openlinksw virtuoso
- version/openlinksw virtuoso/7.2.9