CVE-2023-48384

Summary

ArmorX Global Technology Corporation ArmorX Spam has insufficient validation for user input within a special function. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify and delete database.

Affected Software

VendorProductVersion RangeStatus
ArmorX Global Technology CorporationArmorX Spam8.15.2-2.872.088-1.90.027affected

Weaknesses

  • CWE-89: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CVE Program Container

Additional References

References