NS-ASG
by Netentsec
CVEs (27)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-30867 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_virtual_site_info.php. | ||
| CVE-2024-30858 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php. | ||
| CVE-2024-30865 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php. | ||
| CVE-2024-30868 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php. | ||
| CVE-2024-30862 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php. | ||
| CVE-2024-30860 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php. | ||
| CVE-2024-30859 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php. | ||
| CVE-2024-30871 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php. | ||
| CVE-2024-30870 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php. | ||
| CVE-2023-40850 | Hig | 0.49 | 7.5 | 0.01 | Sep 13, 2023 | netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway. | ||
| CVE-2024-6007 | Med | 0.41 | 6.3 | 0.01 | Jun 15, 2024 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /protocol/iscgwtunnel/deleteiscgwrouteconf.php. The manipulation of the argument messagecontent leads to sql injection. It is… | ||
| CVE-2024-5772 | Med | 0.41 | 6.3 | 0.01 | Jun 9, 2024 | A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /protocol/iscuser/deleteiscuser.php. The manipulation of the argument messagecontent leads to sql… | ||
| CVE-2024-5589 | Med | 0.41 | 6.3 | 0.01 | Jun 3, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /admin/config_MT.php?action=delete. The manipulation of the argument Mid leads to sql injection. It is possible to… | ||
| CVE-2024-3458 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. The attack can be initiated… | ||
| CVE-2024-3457 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the… | ||
| CVE-2024-3456 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/config_Anticrack.php. The manipulation of the argument GroupId leads to sql injection. The… | ||
| CVE-2024-3455 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql… | ||
| CVE-2024-30863 | Med | 0.41 | 6.3 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php. | ||
| CVE-2024-30864 | Med | 0.41 | 6.3 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php. | ||
| CVE-2024-2646 | Med | 0.41 | 6.3 | 0.01 | Mar 19, 2024 | A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument check_VirtualSiteId leads to sql injection. The attack can be… |
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_virtual_site_info.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php.
- risk 0.49cvss 7.5epss 0.01
netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway.
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /protocol/iscgwtunnel/deleteiscgwrouteconf.php. The manipulation of the argument messagecontent leads to sql injection. It is…
- risk 0.41cvss 6.3epss 0.01
A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /protocol/iscuser/deleteiscuser.php. The manipulation of the argument messagecontent leads to sql…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /admin/config_MT.php?action=delete. The manipulation of the argument Mid leads to sql injection. It is possible to…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. The attack can be initiated…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/config_Anticrack.php. The manipulation of the argument GroupId leads to sql injection. The…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql…
- risk 0.41cvss 6.3epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php.
- risk 0.41cvss 6.3epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php.
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument check_VirtualSiteId leads to sql injection. The attack can be…
Page 1 of 2