← back
CVE-2023-39853

CVE-2023-39853

CVSS 6.5 MEDIUMEPSS 0.7%CWE-89
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.5EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
06 Jan 2024Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected products
n/a · n/a