What is CVE-2019-10123?

CVE-2019-10123 is a vulnerability in N/a. Published 2019-05-31.

Is CVE-2019-10123 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-10123

SQL Injection in Advanced InfoData Systems (AIS) ESEL-Server 67 (which is the backend for the AIS logistics mobile app) allows an anonymous attacker to execute arbitrary code in the context of the user of the MSSQL database. The default us…

EPSS: 0.798 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

www.ais.de (x_refsource_MISC)
github.com/rapid7/metasploit-framework/pull/11641/ (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-10123?: CVE-2019-10123 is a vulnerability in N/a. Published 2019-05-31.
Is CVE-2019-10123 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.