CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31171

An Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in the Schweitzer Engineering Laboratories SEL-5030 acSELerator QuickSet Software could allow an attacker to embed instructions that could be executed by an authorized device operator. See Instruction Manual Appendix A and Appendix E dated 20230615 for more details. This issue affects SEL-5030 acSELerator QuickSet Software: through 7.1.3.0.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.7%

CVSS Severity

CVSS v3 Score 5.9

References

https://selinc.com/support/security-notifications/external-reports/
https://www.nozominetworks.com/blog/
https://selinc.com/support/security-notifications/external-reports/
https://www.nozominetworks.com/blog/

Products affected by CVE-2023-31171

Selinc » Sel-5030 Acselerator Quickset » Version: N/A

cpe:2.3:a:selinc:sel-5030_acselerator_quickset:-
Selinc » Sel-5030 Acselerator Quickset » Version: 7.1.3.0

cpe:2.3:a:selinc:sel-5030_acselerator_quickset:7.1.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31171

Products

Pricing

Contact Us