PT-2024-13383 · Epmm · Epmm
Published
2024-03-14
·
Updated
2025-06-13
·
CVE-2023-46807
CVSS v3.1
6.7
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L |
Name of the Vulnerable Software and Affected Versions
EPMM versions prior to 12.1.0.0
Description
The issue allows an authenticated user with appropriate privilege to access or modify data in the underlying database due to an SQL Injection vulnerability in the web component.
Recommendations
For versions prior to 12.1.0.0, update to version 12.1.0.0 or later to resolve the issue.
Fix
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Epmm