Описание
The application is vulnerable to SQL injection attacks. An attacker is able to dump the PostgreSQL database and read its content.
The application is vulnerable to SQL injection attacks. An attacker is able to dump the PostgreSQL database and read its content.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2025-1708
- https://sick.com/psirt
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices
- https://www.endress.com
- https://www.first.org/cvss/calculator/3.1
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.json
- https://www.sick.com/.well-known/csaf/white/2025/sca-2025-0008.pdf
Связанные уязвимости
CVSS3: 8.6
nvd
7 месяцев назад
The application is vulnerable to SQL injection attacks. An attacker is able to dump the PostgreSQL database and read its content.
CVSS3: 8.6
fstec
7 месяцев назад
Уязвимость микропрограммного обеспечения промышленного цифрового газоанализатора MEAC300-FNADE4, связанная с непринятием мер по защите структуры запроса SQL, позволяющая нарушителю получить несанкционированный доступ к базе данных PostgreSQL