COOEY // HUBcompliance · community · intelligence

Exposures › CVE-2023-39807

CVE-2023-39807

Severity
critical
Source
NVD · cve
Published
2023-08-21
CVSS
9.8
Reference
https://nvd.nist.gov/vuln/detail/CVE-2023-39807
shame 35/100

N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a SQL injection vulnerability via the a_passwd parameter at /portal/user-register.php.

Players implicated

nvki · vendorintelligent broadband subscriber gateway · product

Description

N.V.K.INTER CO., LTD. (NVK) iBSG v3.5 was discovered to contain a SQL injection vulnerability via the a_passwd parameter at /portal/user-register.php.

Affected FedRAMP products 0 in the catalog

No correlated FedRAMP products.