VYPR
Unrated severityNVD Advisory· Published May 4, 2023· Updated Aug 3, 2024

Authenticated SQL Injection on Alerts in Guardian/CMC before 22.5.2

CVE-2022-4259

Description

Due to improper input validation in the Alerts controller, a SQL injection vulnerability in Nozomi Networks Guardian and CMC allows an authenticated attacker to execute arbitrary SQL queries on the DBMS used by the web application.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.