Unrated severityNVD Advisory· Published May 4, 2023· Updated Aug 3, 2024
Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2
CVE-2022-4259
Description
Due to improper input validation in the Alerts controller, a SQL injection vulnerability in Nozomi Networks Guardian and CMC allows an authenticated attacker to execute arbitrary SQL queries on the DBMS used by the web application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4(expand)+ 1 more
- (no CPE)
- (no CPE)range: 0
(expand)+ 1 more
- (no CPE)
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- security.nozominetworks.com/NN-2023:1-01mitrevendor-advisory
News mentions
0No linked articles in our index yet.