Skip to main content

License Plate Verifier

6 CVEs product

Monthly

CVE-2023-21412 HIGH This Week

User provided input is not sanitized on the AXIS License Plate Verifier specific “search.cgi” allowing for SQL injections. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi License Plate Verifier
NVD
CVSS 3.1
8.8
EPSS
0.5%
CVE-2023-21411 HIGH This Week

User provided input is not sanitized in the “Settings > Access Control” configuration interface allowing for arbitrary code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection License Plate Verifier
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-21410 HIGH This Week

User provided input is not sanitized on the AXIS License Plate Verifier specific “api.cgi” allowing for arbitrary code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection License Plate Verifier
NVD
CVSS 3.1
8.8
EPSS
0.7%
CVE-2023-21409 CRITICAL Act Now

Due to insufficient file permissions, unprivileged users could gain access to unencrypted administrator credentials allowing the configuration of the application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure License Plate Verifier
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-21408 CRITICAL Act Now

Due to insufficient file permissions, unprivileged users could gain access to unencrypted user credentials that are used in the integration interface towards 3rd party systems. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure License Plate Verifier
NVD
CVSS 3.1
9.8
EPSS
0.6%
CVE-2023-21407 HIGH This Week

A broken access control was found allowing for privileged escalation of the operator account to gain administrator privileges. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation License Plate Verifier
NVD
CVSS 3.1
8.8
EPSS
0.6%
EPSS 0% CVSS 8.8
HIGH This Week

User provided input is not sanitized on the AXIS License Plate Verifier specific “search.cgi” allowing for SQL injections. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi License Plate Verifier
NVD
EPSS 1% CVSS 8.8
HIGH This Week

User provided input is not sanitized in the “Settings > Access Control” configuration interface allowing for arbitrary code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection License Plate Verifier
NVD
EPSS 1% CVSS 8.8
HIGH This Week

User provided input is not sanitized on the AXIS License Plate Verifier specific “api.cgi” allowing for arbitrary code execution. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Command Injection License Plate Verifier
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Due to insufficient file permissions, unprivileged users could gain access to unencrypted administrator credentials allowing the configuration of the application. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure License Plate Verifier
NVD
EPSS 1% CVSS 9.8
CRITICAL Act Now

Due to insufficient file permissions, unprivileged users could gain access to unencrypted user credentials that are used in the integration interface towards 3rd party systems. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure License Plate Verifier
NVD
EPSS 1% CVSS 8.8
HIGH This Week

A broken access control was found allowing for privileged escalation of the operator account to gain administrator privileges. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation License Plate Verifier
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy