CVE-2023-4292

Name of the Vulnerable Software and Affected Versions Frauscher Sensortechnik GmbH FDS101 for FAdC/FAdCi versions 1.4.24 and all previous versions

Description The issue is related to a SQL injection vulnerability that can be exploited via manipulated parameters of the web interface without authentication. The database contains limited, non-critical log information.

Recommendations For versions 1.4.24 and all previous versions, consider disabling access to the web interface until a patch is available. Restrict access to the vulnerable parameters to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.