Vendor CVEs
Netentsec
All CVEs
44 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-30867 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_virtual_site_info.php. | ||
| CVE-2024-30858 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php. | ||
| CVE-2024-30865 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php. | ||
| CVE-2024-30868 | Cri | 0.64 | 9.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php. | ||
| CVE-2024-30862 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php. | ||
| CVE-2024-30860 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php. | ||
| CVE-2024-30859 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php. | ||
| CVE-2024-30871 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php. | ||
| CVE-2024-30870 | Hig | 0.57 | 8.8 | 0.01 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php. | ||
| CVE-2023-40850 | Hig | 0.49 | 7.5 | 0.01 | Sep 13, 2023 | netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway. | ||
| CVE-2024-2647 | Hig | 0.48 | 7.3 | 0.01 | Mar 19, 2024 | A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /admin/singlelogin.php. The manipulation of the argument loginId leads to sql injection. The attack may… | ||
| CVE-2023-7161 | Hig | 0.48 | 7.3 | 0.01 | Dec 29, 2023 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?para=index of the component Login. The manipulation of the argument check_VirtualSiteId leads to sql injection. It is… | ||
| CVE-2023-6903 | Hig | 0.48 | 7.3 | 0.01 | Dec 17, 2023 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file /admin/singlelogin.php?submit=1. The manipulation of the argument loginId leads to sql injection. It is possible to initiate the… | ||
| CVE-2024-2330 | Med | 0.42 | 6.3 | 0.18 | Mar 9, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection. It is possible to initiate the attack… | ||
| CVE-2024-2022 | Med | 0.42 | 6.3 | 0.09 | Mar 1, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/list_ipAddressPolicy.php. The manipulation of the argument GroupId leads to sql… | ||
| CVE-2024-6007 | Med | 0.41 | 6.3 | 0.01 | Jun 15, 2024 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /protocol/iscgwtunnel/deleteiscgwrouteconf.php. The manipulation of the argument messagecontent leads to sql injection. It is… | ||
| CVE-2024-5773 | Med | 0.41 | 6.3 | 0.01 | Jun 9, 2024 | A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/firewall/deletemacbind.php. The manipulation of the argument messagecontent leads to sql injection. It is… | ||
| CVE-2024-5772 | Med | 0.41 | 6.3 | 0.01 | Jun 9, 2024 | A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /protocol/iscuser/deleteiscuser.php. The manipulation of the argument messagecontent leads to sql… | ||
| CVE-2024-5590 | Med | 0.41 | 6.3 | 0.01 | Jun 3, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. This vulnerability affects unknown code of the file /protocol/iscuser/uploadiscuser.php of the component JSON Content Handler. The manipulation of the argument… | ||
| CVE-2024-5589 | Med | 0.41 | 6.3 | 0.01 | Jun 3, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /admin/config_MT.php?action=delete. The manipulation of the argument Mid leads to sql injection. It is possible to… | ||
| CVE-2024-3458 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. The attack can be initiated… | ||
| CVE-2024-3457 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the… | ||
| CVE-2024-3456 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/config_Anticrack.php. The manipulation of the argument GroupId leads to sql injection. The… | ||
| CVE-2024-3455 | Med | 0.41 | 6.3 | 0.01 | Apr 8, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql… | ||
| CVE-2024-30863 | Med | 0.41 | 6.3 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php. | ||
| CVE-2024-30864 | Med | 0.41 | 6.3 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php. | ||
| CVE-2024-3041 | Med | 0.41 | 6.3 | 0.01 | Mar 28, 2024 | A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The… | ||
| CVE-2024-3040 | Med | 0.41 | 6.3 | 0.01 | Mar 28, 2024 | A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_crl_conf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack… | ||
| CVE-2024-2649 | Med | 0.41 | 6.3 | 0.01 | Mar 20, 2024 | A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent… | ||
| CVE-2024-2646 | Med | 0.41 | 6.3 | 0.01 | Mar 19, 2024 | A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument check_VirtualSiteId leads to sql injection. The attack can be… | ||
| CVE-2024-2644 | Med | 0.41 | 6.3 | 0.01 | Mar 19, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/addfirewall.php. The manipulation of the argument FireWallTableArray leads to sql… | ||
| CVE-2024-2329 | Med | 0.41 | 6.3 | 0.01 | Mar 9, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_resource_icon.php?action=delete. The manipulation of the argument IconId leads to sql… | ||
| CVE-2024-2021 | Med | 0.41 | 6.3 | 0.01 | Mar 1, 2024 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. Affected is an unknown function of the file /admin/list_localuser.php. The manipulation of the argument ResId leads to sql injection. It is possible to launch the… | ||
| CVE-2023-5826 | Med | 0.36 | 5.5 | 0.01 | Oct 27, 2023 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_onlineuser.php. The manipulation of the argument SessionId leads to sql injection. The exploit… | ||
| CVE-2023-5785 | Med | 0.36 | 5.5 | 0.01 | Oct 26, 2023 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/firewall/addaddress_interpret.php. The manipulation of the argument messagecontent leads to sql injection. The… | ||
| CVE-2023-5784 | Med | 0.36 | 5.5 | 0.01 | Oct 26, 2023 | A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/uploadfirewall.php. The manipulation of the argument messagecontent leads to sql… | ||
| CVE-2023-5700 | Med | 0.36 | 5.5 | 0.01 | Oct 23, 2023 | A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/iscgwtunnel/uploadiscgwrouteconf.php. The manipulation of the argument GWLinkId leads to sql injection. The… | ||
| CVE-2024-30866 | Med | 0.35 | 5.4 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php. | ||
| CVE-2023-7094 | Med | 0.35 | 5.3 | 0.01 | Dec 25, 2023 | A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected by this vulnerability is an unknown functionality of the file /protocol/nsasg6.0.tgz. The manipulation leads to information disclosure. The attack can be launched… | ||
| CVE-2024-30861 | Med | 0.34 | 5.3 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/configguide/ipsec_guide_1.php. | ||
| CVE-2024-30872 | Med | 0.33 | 5.1 | 0.00 | Apr 1, 2024 | netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php. | ||
| CVE-2023-5681 | Med | 0.31 | 4.7 | 0.01 | Oct 20, 2023 | A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_addr_fwresource_ip.php. The manipulation leads to sql injection. It is possible to initiate the attack… | ||
| CVE-2024-2648 | Med | 0.28 | 4.3 | 0.01 | Mar 19, 2024 | A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /nac/naccheck.php. The manipulation of the argument username leads to improper neutralization of data within xpath… | ||
| CVE-2024-2645 | Med | 0.28 | 4.3 | 0.01 | Mar 19, 2024 | A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath… |
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_virtual_site_info.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php.
- risk 0.64cvss 9.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.
- risk 0.57cvss 8.8epss 0.01
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php.
- risk 0.49cvss 7.5epss 0.01
netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway.
- risk 0.48cvss 7.3epss 0.01
A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /admin/singlelogin.php. The manipulation of the argument loginId leads to sql injection. The attack may…
- risk 0.48cvss 7.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?para=index of the component Login. The manipulation of the argument check_VirtualSiteId leads to sql injection. It is…
- risk 0.48cvss 7.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file /admin/singlelogin.php?submit=1. The manipulation of the argument loginId leads to sql injection. It is possible to initiate the…
- risk 0.42cvss 6.3epss 0.18
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection. It is possible to initiate the attack…
- risk 0.42cvss 6.3epss 0.09
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/list_ipAddressPolicy.php. The manipulation of the argument GroupId leads to sql…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /protocol/iscgwtunnel/deleteiscgwrouteconf.php. The manipulation of the argument messagecontent leads to sql injection. It is…
- risk 0.41cvss 6.3epss 0.01
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/firewall/deletemacbind.php. The manipulation of the argument messagecontent leads to sql injection. It is…
- risk 0.41cvss 6.3epss 0.01
A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /protocol/iscuser/deleteiscuser.php. The manipulation of the argument messagecontent leads to sql…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. This vulnerability affects unknown code of the file /protocol/iscuser/uploadiscuser.php of the component JSON Content Handler. The manipulation of the argument…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /admin/config_MT.php?action=delete. The manipulation of the argument Mid leads to sql injection. It is possible to…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. The attack can be initiated…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/config_Anticrack.php. The manipulation of the argument GroupId leads to sql injection. The…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql…
- risk 0.41cvss 6.3epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php.
- risk 0.41cvss 6.3epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php.
- risk 0.41cvss 6.3epss 0.01
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The…
- risk 0.41cvss 6.3epss 0.01
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_crl_conf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack…
- risk 0.41cvss 6.3epss 0.01
A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent…
- risk 0.41cvss 6.3epss 0.01
A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument check_VirtualSiteId leads to sql injection. The attack can be…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/addfirewall.php. The manipulation of the argument FireWallTableArray leads to sql…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_resource_icon.php?action=delete. The manipulation of the argument IconId leads to sql…
- risk 0.41cvss 6.3epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. Affected is an unknown function of the file /admin/list_localuser.php. The manipulation of the argument ResId leads to sql injection. It is possible to launch the…
- risk 0.36cvss 5.5epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_onlineuser.php. The manipulation of the argument SessionId leads to sql injection. The exploit…
- risk 0.36cvss 5.5epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/firewall/addaddress_interpret.php. The manipulation of the argument messagecontent leads to sql injection. The…
- risk 0.36cvss 5.5epss 0.01
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/uploadfirewall.php. The manipulation of the argument messagecontent leads to sql…
- risk 0.36cvss 5.5epss 0.01
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/iscgwtunnel/uploadiscgwrouteconf.php. The manipulation of the argument GWLinkId leads to sql injection. The…
- risk 0.35cvss 5.4epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php.
- risk 0.35cvss 5.3epss 0.01
A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected by this vulnerability is an unknown functionality of the file /protocol/nsasg6.0.tgz. The manipulation leads to information disclosure. The attack can be launched…
- risk 0.34cvss 5.3epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/configguide/ipsec_guide_1.php.
- risk 0.33cvss 5.1epss 0.00
netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php.
- risk 0.31cvss 4.7epss 0.01
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_addr_fwresource_ip.php. The manipulation leads to sql injection. It is possible to initiate the attack…
- risk 0.28cvss 4.3epss 0.01
A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /nac/naccheck.php. The manipulation of the argument username leads to improper neutralization of data within xpath…
- risk 0.28cvss 4.3epss 0.01
A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath…