AMTT HiBOS sql injection
CVE-2023-6647

7.3HIGH

Key Information:

Vendor

Amtt

Status
Hibos
Vendor
CVE Published:
10 December 2023

What is CVE-2023-6647?

A vulnerability in AMTT HiBOS 1.0 allows for SQL injection due to improper argument handling. This issue enables attackers to manipulate the argument 'Type', potentially leading to unauthorized access to the database. This exploit can be executed remotely, raising significant security concerns. Disclosures regarding this vulnerability have been made publicly available, highlighting the urgent need for updates from AMTT.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

HiBOS 1.0

References

https://vuldb.com/?id.247340
vdb-entrytechnical-description
https://vuldb.com/?ctiid.247340
signaturepermissions-required
https://github.com/gatsby2003/Sqlinjection/blob/main/sql.md
exploit

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

gatsby (VulDB User)
JSON
.