March 12, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple GitLab Community Edition and Enterprise Edition Vulnerabilities
August 2, 2023Rewterz Threat Alert – Fabookie: A Stealthy InfoStealer Threat Targeting Social Media Accounts – Active IOCs
August 2, 2023Rewterz Threat Advisory – Multiple GitLab Community Edition and Enterprise Edition Vulnerabilities
August 2, 2023Rewterz Threat Alert – Fabookie: A Stealthy InfoStealer Threat Targeting Social Media Accounts – Active IOCs
August 2, 2023
Severity
Medium
Analysis Summary
CVE-2023-3983
Advantech iView is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to the com.imc.iview.utils.CUtils.checkSQLInjection() component, which could allow the attacker to view, add, modify or delete information in the back-end database.
Impact
- Data Manipulation
Indicators Of Compromise
CVE
- CVE-2023-3983
Affected Vendors
Advantech
Affected Products
- Advantech iView 5.7.4
Remediation
Upgrade to the latest version of iView, available from the Advantech Web site.