Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2023-49954

The CRM Integration in 3CX before 18.0.9.23 and 20 before 20.0.0.1494 allows SQL Injection via a first name, search string, or email address.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.7%
CVSS Severity
CVSS v3 Score 9.8
Products affected by CVE-2023-49954
  • 3cx » 3cx » Version: N/A
    cpe:2.3:a:3cx:3cx:-
  • 3cx » 3cx » Version: 12.5
    cpe:2.3:a:3cx:3cx:12.5
  • 3cx » 3cx » Version: 12.5.44178.1002
    cpe:2.3:a:3cx:3cx:12.5.44178.1002
  • 3cx » 3cx » Version: 15
    cpe:2.3:a:3cx:3cx:15
  • 3cx » 3cx » Version: 15.5.3554.1
    cpe:2.3:a:3cx:3cx:15.5.3554.1
  • 3cx » 3cx » Version: 15.5.6354.2
    cpe:2.3:a:3cx:3cx:15.5.6354.2
  • 3cx » 3cx » Version: 18.0.2.315
    cpe:2.3:a:3cx:3cx:18.0.2.315
  • 3cx » 3cx » Version: 18.0.3.450
    cpe:2.3:a:3cx:3cx:18.0.3.450
  • 3cx » 3cx » Version: 20.0
    cpe:2.3:a:3cx:3cx:20.0
  • 3cx » 3cx » Version: 20.0.0.1466
    cpe:2.3:a:3cx:3cx:20.0.0.1466


Products
Pricing
Contact Us

Shodan ® - All rights reserved