CVE-2024-10613 – ESAFENET CDG SQL Injection Vulnerability

11月 1, 2024
4:16 am

CVE ID : CVE-2024-10613

Published : Nov. 1, 2024, 3:15 a.m. | 1 hour, 1 minute ago

Description : A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delSystemEncryptPolicy of the file /com/esafenet/servlet/system/SystemEncryptPolicyService.java. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-10613 – ESAFENET CDG SQL Injection Vulnerability

Elvescore.io

Recent Posts

CVE-2024-12928 – Code-Projects Simple Admin Panel Remote SQL Injection Vulnerability

CVE-2024-12929 – Apache Code-projects Student Management System SQL Injection

CVE-2024-12927 – “1000 Projects Attendance Tracking Management System SQL Injection Vulnerability”

CVE-2024-12926 – Codezips Project Management System SQL Injection Vulnerability

CVE-2024-56430 – OpenFHE NULL Pointer Dereference Vulnerability in EvalFloor Function

CVE-2024-56431 – Theora Invalid Negative Left Shift Vulnerability

CVE-2024-10613 – ESAFENET CDG SQL Injection Vulnerability

CVE-2024-10613 – ESAFENET CDG SQL Injection Vulnerability