Moderate severityNVD Advisory· Published Aug 17, 2023· Updated Oct 8, 2024
CVE-2023-38905
CVE-2023-38905
Description
SQL injection vulnerability in Jeecg-boot v.3.5.0 and before allows a local attacker to cause a denial of service via the Benchmark, PG_Sleep, DBMS_Lock.Sleep, Waitfor, DECODE, and DBMS_PIPE.RECEIVE_MESSAGE functions.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jeecgframework.boot:jeecg-boot-parentMaven | <= 3.5.0 | — |
Affected products
2- Jeecg-boot/Jeecg-bootdescription
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.