SQL Injection Vulnerability in RUGGEDCOM CROSSBOW (All versions < V5.3)

SQL Injection Vulnerability in RUGGEDCOM CROSSBOW (All versions < V5.3)

CVE-2023-27463 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The audit log form of affected applications is vulnerable to SQL injection. This could allow authenticated remote attackers to execute arbitrary SQL queries on the server database.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.