CVE Catalog

CVE-2023-3763

LowCVSS 3.7
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.52%

40th percentile — higher than 40% of all known CVEs

Summary

A vulnerability was found in Intergard SGS 8.7.0 affecting unknown code of the SQL Query Handler component. The manipulation leads to cleartext transmission of sensitive information.

Risk Assessment

An attacker can remotely exploit this vulnerability, posing a risk of exposing confidential data. Although the complexity of the attack is high, the disclosure of the exploit may increase the risk of its use.

Recommendation

It is recommended to monitor and secure data transmission and to update the software to the latest version as soon as a patch becomes available.

Original NVD description (English source)

A vulnerability was found in Intergard SGS 8.7.0. It has been declared as problematic. This vulnerability affects unknown code of the component SQL Query Handler. The manipulation leads to cleartext transmission of sensitive information. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-234448. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS