CVE-2023-4092 Information

Description

SQL injection vulnerability in Arconte Áurea in its 1.5.0.0 version. The exploitation of this vulnerability could allow an attacker to read sensitive data from the database modify data (insert/update/delete) perform database administration operations and in some cases execute commands on the operating system.

Reference

https://www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-fujitsu-arconte-aurea