High severity7.5NVD Advisory· Published Mar 8, 2019· Updated Jun 17, 2026
CVE-2019-9632
CVE-2019-9632
Description
ESAFENET CDG V3 and V5 has an arbitrary file download vulnerability via the fileName parameter in download.jsp because the InstallationPack parameter is mishandled in a /CDGServer3/ClientAjax request.
Affected products
1Patches
Vulnerability mechanics
References
1- www.iwantacve.cn/index.php/archives/132/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.