

Rewterz Threat Advisory – Multiple GitLab Community Edition and Enterprise Edition Vulnerabilities
August 2, 2023
Rewterz Threat Alert – Fabookie: A Stealthy InfoStealer Threat Targeting Social Media Accounts – Active IOCs
August 2, 2023
Rewterz Threat Advisory – Multiple GitLab Community Edition and Enterprise Edition Vulnerabilities
August 2, 2023
Rewterz Threat Alert – Fabookie: A Stealthy InfoStealer Threat Targeting Social Media Accounts – Active IOCs
August 2, 2023Severity
Medium
Analysis Summary
CVE-2023-3983
Advantech iView is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to the com.imc.iview.utils.CUtils.checkSQLInjection() component, which could allow the attacker to view, add, modify or delete information in the back-end database.
Impact
- Data Manipulation
Indicators Of Compromise
CVE
- CVE-2023-3983
Affected Vendors
Advantech
Affected Products
- Advantech iView 5.7.4
Remediation
Upgrade to the latest version of iView, available from the Advantech Web site.