VYPR

CDG

by Esafenet

CVEs (52)

  • CVE-2024-10612MedNov 1, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function removeHookInvalidCourse of the file /com/esafenet/servlet/system/HookInvalidCourseService.java. The manipulation of the argument id leads to sql injection. It is possible to…

  • CVE-2024-10611MedNov 1, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5 and classified as critical. This issue affects the function delProtocol of the file /com/esafenet/servlet/system/PrintScreenListService.java. The manipulation of the argument id leads to sql injection. The attack may be initiated…

  • CVE-2024-10610MedNov 1, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function delProtocol of the file /com/esafenet/servlet/system/ProtocolService.java. The manipulation of the argument id leads to sql injection. The attack can be initiated…

  • CVE-2024-10597MedOct 31, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in ESAFENET CDG 5. This affects the function delPolicyAction of the file /com/esafenet/servlet/system/PolicyActionService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-10596MedOct 31, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. Affected by this issue is the function delEntryptPolicySort of the file /com/esafenet/servlet/system/EncryptPolicyTypeService.java. The manipulation of the argument id leads to sql injection. The attack…

  • CVE-2024-10595MedOct 31, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. Affected by this vulnerability is the function delFile/delDifferCourseList of the file /com/esafenet/servlet/ajax/PublicDocInfoAjax.java. The manipulation leads to sql injection. The attack can be…

  • CVE-2024-10594MedOct 31, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. Affected is the function docHistory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The manipulation of the argument fileId leads to sql injection. It is possible to…

  • CVE-2024-10502MedOct 30, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in ESAFENET CDG 5 and classified as critical. This vulnerability affects the function getOneFileDirectory of the file /com/esafenet/servlet/fileManagement/FileDirectoryService.java. The manipulation of the argument directoryId leads to sql…

  • CVE-2024-10501MedOct 30, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-10500MedOct 30, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in ESAFENET CDG 5. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/policy/HookWhiteListService.java. The manipulation of the argument policyId leads to sql injection. The…

  • CVE-2024-48343MedOct 25, 2024
    risk 0.41cvss 6.3epss 0.00

    A SQL Injection vulnerability in ESAFENET CDG 5 and earlier allows an attacker to execute arbitrary code via the id parameter of the dataSearch.jsp page.

  • CVE-2024-10378MedOct 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in ESAFENET CDG 5. Affected is the function actionViewCDGRenewFile of the file /com/esafenet/servlet/client/CDGRenewApplicationService.java. The manipulation of the argument CDGRenewFileId leads to sql injection. It is…

  • CVE-2024-10377MedOct 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been rated as critical. This issue affects the function actionPassDecryptApplication1 of the file /com/esafenet/servlet/client/DecryptApplicationService.java. The manipulation of the argument id leads to sql injection. The…

  • CVE-2024-10376MedOct 25, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql…

  • CVE-2024-10279MedOct 23, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects unknown code of the file /com/esafenet/servlet/policy/PrintPolicyService.java. The manipulation of the argument policyId leads to sql injection. The attack can be initiated…

  • CVE-2024-10278MedOct 23, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects an unknown part of the file /com/esafenet/servlet/user/ReUserOrganiseService.java. The manipulation of the argument userId leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-10277MedOct 23, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is some unknown functionality of the file /com/esafenet/servlet/ajax/UsbKeyAjax.java. The manipulation of the argument id leads to sql injection. The attack may be launched remotely.…

  • CVE-2024-10135MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5. It has been classified as critical. This affects the function actionDelNetSecConfig of the file /com/esafenet/servlet/netSec/NetSecConfigService.java. The manipulation of the argument id leads to sql injection. It is possible to…

  • CVE-2024-10134MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in ESAFENET CDG 5 and classified as critical. Affected by this issue is the function connectLogout of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulation of the argument servername leads to sql injection. The attack may be…

  • CVE-2024-10133MedOct 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in ESAFENET CDG 5 and classified as critical. Affected by this vulnerability is the function updateNetSecPolicyPriority of the file /com/esafenet/servlet/ajax/NetSecPolicyAjax.java. The manipulation of the argument id/frontId leads to sql…