CVE-2023-1091
CVSS V2 None
CVSS V3 None
Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Alpata Licensed Warehousing Automation System allows Command Line Execution through SQL Injection.This issue affects Licensed Warehousing Automation System: through 2023.1.01.
Overview
- CVE ID
- CVE-2023-1091
- Assigner
- cve@usom.gov.tr
- Vulnerability Status
- Modified
- Published Version
- 2023-03-10T08:15:09
- Last Modified Date
- 2023-03-26T20:15:09
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:alpatateknoloji:licensed_warehousing_automation_system:*:*:*:*:*:*:*:* | 1 | OR | 2023.1.01 |
References
| Reference URL | Reference Tags |
|---|---|
| https://www.usom.gov.tr/bildirim/tr-23-0139 | Third Party Advisory |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-1091 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1091 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2023-04-17 06:12:08 | Added to TrackCVE | |||
| 2023-04-17 06:12:10 | Weakness Enumeration | new |