CVE-2023-3717

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-3717
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Farmakom Remote Administration Console allows SQL Injection. This issue affects Remote Administration Console: before 1.02.

9.8 /10

CVSS v3 : CRITICAL

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0441
https://www.usom.gov.tr/bildirim/tr-23-0441 Third Party Advisory
https://www.usom.gov.tr/bildirim/tr-23-0441 Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:a:farmakom:remote_administration_console:*:*:*:*:*:*:*:*
History

21 May 2026, 14:16

Type Values Removed Values Added
Summary (en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Farmakom Remote Administration Console allows SQL Injection.This issue affects Remote Administration Console: before 1.02. (en) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Farmakom Remote Administration Console allows SQL Injection. This issue affects Remote Administration Console: before 1.02.
References
  • () https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0441 -

21 Nov 2024, 08:17

Type Values Removed Values Added
References () https://www.usom.gov.tr/bildirim/tr-23-0441 - Third Party Advisory () https://www.usom.gov.tr/bildirim/tr-23-0441 - Third Party Advisory

10 Aug 2023, 18:16

Type Values Removed Values Added
CPE cpe:2.3:a:farmakom:remote_administration_console:*:*:*:*:*:*:*:*
First Time Farmakom
Farmakom remote Administration Console
References (MISC) https://www.usom.gov.tr/bildirim/tr-23-0441 - (MISC) https://www.usom.gov.tr/bildirim/tr-23-0441 - Third Party Advisory

08 Aug 2023, 11:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-08-08 11:15

Updated : 2026-05-21 14:16

NVD link : CVE-2023-3717

Mitre link : CVE-2023-3717

CVE.ORG link : CVE-2023-3717

JSON object : View

Products Affected

farmakom

  • remote_administration_console
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')