Metrics
Affected Vendors & Products
Mon, 04 Nov 2024 22:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:esafenet:cdg:5:*:*:*:*:*:*:* |
Wed, 23 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Esafenet
Esafenet cdg |
|
CPEs | cpe:2.3:a:esafenet:cdg:*:*:*:*:*:*:*:* | |
Vendors & Products |
Esafenet
Esafenet cdg |
|
Metrics |
ssvc
|
Wed, 23 Oct 2024 11:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/ajax/UsbKeyAjax.java. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. | |
Title | ESAFENET CDG UsbKeyAjax.java sql injection | |
Weaknesses | CWE-89 | |
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-10-23T11:31:21.609Z
Updated: 2024-10-23T13:31:12.536Z
Reserved: 2024-10-23T05:53:39.385Z
Link: CVE-2024-10277
Updated: 2024-10-23T13:31:07.553Z
Status : Analyzed
Published: 2024-10-23T12:15:02.403
Modified: 2024-11-04T22:13:13.207
Link: CVE-2024-10277
No data.