CVE-2023-1064

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Automation Software allows SQL Injection. This issue affects Weighbridge Automation Software: before 1.1.

critical 9.8 CVSS 3.1

Published: Mar 1, 2023

Modified: Jun 1, 2026

Product: Weighbridge Automation Software

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Uzay Baskul Weighbridge Automation Software allows SQL Injection.

This issue affects Weighbridge Automation Software: before 1.1.

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-23-0115
https://www.usom.gov.tr/bildirim/tr-23-0115
https://www.usom.gov.tr/bildirim/tr-23-0115

CVSS Breakdown

Version	3.1
Score	9.8 / 10
Severity	critical

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weakness (CWE)

CWE-89

Affected Product

Vendor	Uzaybaskul
Product	Weighbridge Automation Software