CyberSec.Space Logo
Back to CVE Browser

CVE-2023-35064

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1770%
EPSS Percentile35.24th
PublishedJun 13, 2023
Last ModifiedMay 22, 2026

Vulnerability Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Satos Satos Mobile allows SQL Injection through SOAP Parameter Tampering. This issue affects Satos Mobile: before 20230607.

Affected Platforms (CPE)

๐Ÿ“ฆ
Satos

Satos Mobile

< 20230607

References & Advisories

๐Ÿ”— https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0346
๐Ÿ”— https://www.usom.gov.tr/bildirim/tr-23-0346
๐Ÿ”— https://https://www.usom.gov.tr/bildirim/tr-23-0346

Related Vulnerabilities

CVE-2023-11149.8

Missing Authorization vulnerability in Eskom e-Belediye allows Information Elicitation. This issue affects e-Belediye: from 1.0.0...

CVE-2023-08399.8

Improper Protection for Outbound Error Messages and Alert Signals vulnerability in ProMIS Process Co. InSCADA allows Account Footp...

CVE-2023-09399.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NTN Information Technologies...

CVE-2023-09799.8

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in MedData MedDataPACS allows S...