CVE-2023-29047

Name of the Vulnerable Software and Affected Versions Imageconverter (affected versions not specified)

Description The issue arises from Imageconverter API endpoints not sufficiently validating and sanitizing client input, allowing the injection of arbitrary SQL statements. An attacker with access to the adjacent network and potentially API credentials could read and modify database content accessible to the imageconverter SQL user account. No publicly available exploits are known.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.