LiveActive security incident?Get immediate response
CVE archive

June 2023

Browse CVE records published in June 2023, with severity, affected products, CWE, KEV, and source-backed vulnerability context.

Showing 50 of 2369 matching CVEs · Page 2 of 48.

Critical · CVSS 9.8

CVE-2023-31410: A remote unprivileged attacker can intercept the communication via e.g.

A remote unprivileged attacker can intercept the communication via e.g. Man-In-The-Middle, due to the absence of Transport Layer Security (TLS) in the SICK EventCam App. This lack of encryption in the communication channel can lead to the unauthorized disclosure of sensitive information. The attacker can exploit this weakness to eavesdrop on the communication between the EventCam App and the Client, and potentially manipulate the data being transmitted.

Published Jun 19, 2023 · Updated Jun 1, 2026

Critical · CVSS 9.8

CVE-2023-2907: SQLi in Marksoft

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Marksoft allows SQL Injection. This issue affects Marksoft: through Mobile:v.7.1.7 ; Login:1.4 ; API:20230605.

Published Jun 19, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-3000: SQLi in Erikoglu Technology's ErMon

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Erikoglu Technology ErMon allows Command Line Execution through SQL Injection, Authentication Bypass. This issue affects ErMon: before 230602.

Published Jun 2, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-3047: SQLi in TMT's Lockcell

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TMT Lockcell allows SQL Injection. This issue affects Lockcell: before 15.

Published Jun 13, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-3048: IDOR in TMT's Lockcell

Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows Authentication Abuse, Authentication Bypass. This issue affects Lockcell: before 15.

Published Jun 13, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-3049: File Upload in TMT's Lockcell

Unrestricted Upload of File with Dangerous Type vulnerability in TMT Lockcell allows Command Injection. This issue affects Lockcell: before 15.

Published Jun 13, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-3050: Authentication Bypass in TMT's Lockcell

Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privilege Abuse, Authentication Bypass. This issue affects Lockcell: before 15.

Published Jun 13, 2023 · Updated May 22, 2026

Critical · CVSS 9.8

CVE-2023-35064: SQLi in Satos Mobile

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Satos Satos Mobile allows SQL Injection through SOAP Parameter Tampering. This issue affects Satos Mobile: before 20230607.

Published Jun 13, 2023 · Updated May 22, 2026