CVE-2023-41640

Name of the Vulnerable Software and Affected Versions GruppoSCAI RealGimm version 1.1.37p38

Description An improper error handling issue in the ErroreNonGestito.aspx component allows attackers to obtain sensitive technical information via a crafted SQL query.

Recommendations For GruppoSCAI RealGimm version 1.1.37p38, consider restricting access to the ErroreNonGestito.aspx component until a patch is available. As a temporary workaround, avoid using crafted SQL queries in the affected component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.