First published: Tue Sep 19 2023(Updated: )
SQL injection vulnerability in Arconte Áurea, in its 1.5.0.0 version. The exploitation of this vulnerability could allow an attacker to read sensitive data from the database, modify data (insert/update/delete), perform database administration operations and, in some cases, execute commands on the operating system.
Credit: cve-coordination@incibe.es cve-coordination@incibe.es
Affected Software | Affected Version | How to fix |
---|---|---|
Fujitsu Arconte Aurea | =1.5.0.0 | |
=1.5.0.0 |
This vulnerabilities have been fixed by Fujitsu in version 1.5.0.0, released on 4/4/2022. All new versions of the product, including the latest 1.6.2.3, also include the fixes.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-4092 is a SQL injection vulnerability in Arconte Áurea version 1.5.0.0.
CVE-2023-4092 is considered a critical vulnerability with a severity score of 9.8.
The exploitation of CVE-2023-4092 could allow an attacker to read sensitive data from the database, modify data, perform database administration operations, and execute commands on the operating system.
CVE-2023-4092 affects Fujitsu Arconte Áurea version 1.5.0.0.
It is recommended to update Arconte Áurea to a version that addresses the SQL injection vulnerability (CVE-2023-4092).