ICS Business Manager Version 7.06.0028.7089 SQL Injection Vulnerability

ICS Business Manager Version 7.06.0028.7089 SQL Injection Vulnerability

CVE-2023-6097 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

A SQL injection vulnerability has been found in ICS Business Manager, affecting version 7.06.0028.7089. This vulnerability could allow a remote user to send a specially crafted SQL query and retrieve all the information stored in the database. The data could also be modified or deleted, causing the application to malfunction.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.