VYPR

Vendor CVEs

Netentsec

All CVEs

44 total · sorted by risk
  • CVE-2024-30867CriApr 1, 2024
    risk 0.64cvss 9.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_virtual_site_info.php.

  • CVE-2024-30858CriApr 1, 2024
    risk 0.64cvss 9.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_fire_wall.php.

  • CVE-2024-30865CriApr 1, 2024
    risk 0.64cvss 9.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/edit_user_login.php.

  • CVE-2024-30868CriApr 1, 2024
    risk 0.64cvss 9.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/add_getlogin.php.

  • CVE-2024-30862HigApr 1, 2024
    risk 0.57cvss 8.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/index.php.

  • CVE-2024-30860HigApr 1, 2024
    risk 0.57cvss 8.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/export_excel_user.php.

  • CVE-2024-30859HigApr 1, 2024
    risk 0.57cvss 8.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupSSLCert.php.

  • CVE-2024-30871HigApr 1, 2024
    risk 0.57cvss 8.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/applyhardware.php.

  • CVE-2024-30870HigApr 1, 2024
    risk 0.57cvss 8.8epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/address_interpret.php.

  • CVE-2023-40850HigSep 13, 2023
    risk 0.49cvss 7.5epss 0.01

    netentsec NS-ASG 6.3 is vulnerable to Incorrect Access Control. There is a file leak in the website source code of the application security gateway.

  • CVE-2024-2647HigMar 19, 2024
    risk 0.48cvss 7.3epss 0.01

    A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /admin/singlelogin.php. The manipulation of the argument loginId leads to sql injection. The attack may…

  • CVE-2023-7161HigDec 29, 2023
    risk 0.48cvss 7.3epss 0.01

    A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?para=index of the component Login. The manipulation of the argument check_VirtualSiteId leads to sql injection. It is…

  • CVE-2023-6903HigDec 17, 2023
    risk 0.48cvss 7.3epss 0.01

    A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file /admin/singlelogin.php?submit=1. The manipulation of the argument loginId leads to sql injection. It is possible to initiate the…

  • CVE-2024-2330MedMar 9, 2024
    risk 0.42cvss 6.3epss 0.18

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-2022MedMar 1, 2024
    risk 0.42cvss 6.3epss 0.09

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/list_ipAddressPolicy.php. The manipulation of the argument GroupId leads to sql…

  • CVE-2024-6007MedJun 15, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /protocol/iscgwtunnel/deleteiscgwrouteconf.php. The manipulation of the argument messagecontent leads to sql injection. It is…

  • CVE-2024-5773MedJun 9, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/firewall/deletemacbind.php. The manipulation of the argument messagecontent leads to sql injection. It is…

  • CVE-2024-5772MedJun 9, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gateway 6.3. This issue affects some unknown processing of the file /protocol/iscuser/deleteiscuser.php. The manipulation of the argument messagecontent leads to sql…

  • CVE-2024-5590MedJun 3, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. This vulnerability affects unknown code of the file /protocol/iscuser/uploadiscuser.php of the component JSON Content Handler. The manipulation of the argument…

  • CVE-2024-5589MedJun 3, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /admin/config_MT.php?action=delete. The manipulation of the argument Mid leads to sql injection. It is possible to…

  • CVE-2024-3458MedApr 8, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /admin/add_ikev2.php. The manipulation of the argument TunnelId leads to sql injection. The attack can be initiated…

  • CVE-2024-3457MedApr 8, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/config_ISCGroupNoCache.php. The manipulation of the argument GroupId leads to sql injection. It is possible to initiate the…

  • CVE-2024-3456MedApr 8, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/config_Anticrack.php. The manipulation of the argument GroupId leads to sql injection. The…

  • CVE-2024-3455MedApr 8, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql…

  • CVE-2024-30863MedApr 1, 2024
    risk 0.41cvss 6.3epss 0.00

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /WebPages/history.php.

  • CVE-2024-30864MedApr 1, 2024
    risk 0.41cvss 6.3epss 0.00

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/config_ISCGroupTimePolicy.php.

  • CVE-2024-3041MedMar 28, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. This vulnerability affects unknown code of the file /protocol/log/listloginfo.php. The manipulation leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2024-3040MedMar 28, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_crl_conf. The manipulation of the argument CRLId leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-2649MedMar 20, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability has been found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /protocol/iscdevicestatus/deleteonlineuser.php. The manipulation of the argument messagecontent…

  • CVE-2024-2646MedMar 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical was found in Netentsec NS-ASG Application Security Gateway 6.3. This vulnerability affects unknown code of the file /vpnweb/index.php?para=index. The manipulation of the argument check_VirtualSiteId leads to sql injection. The attack can be…

  • CVE-2024-2644MedMar 19, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been rated as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/addfirewall.php. The manipulation of the argument FireWallTableArray leads to sql…

  • CVE-2024-2329MedMar 9, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_resource_icon.php?action=delete. The manipulation of the argument IconId leads to sql…

  • CVE-2024-2021MedMar 1, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. Affected is an unknown function of the file /admin/list_localuser.php. The manipulation of the argument ResId leads to sql injection. It is possible to launch the…

  • CVE-2023-5826MedOct 27, 2023
    risk 0.36cvss 5.5epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_onlineuser.php. The manipulation of the argument SessionId leads to sql injection. The exploit…

  • CVE-2023-5785MedOct 26, 2023
    risk 0.36cvss 5.5epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/firewall/addaddress_interpret.php. The manipulation of the argument messagecontent leads to sql injection. The…

  • CVE-2023-5784MedOct 26, 2023
    risk 0.36cvss 5.5epss 0.01

    A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /protocol/firewall/uploadfirewall.php. The manipulation of the argument messagecontent leads to sql…

  • CVE-2023-5700MedOct 23, 2023
    risk 0.36cvss 5.5epss 0.01

    A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/iscgwtunnel/uploadiscgwrouteconf.php. The manipulation of the argument GWLinkId leads to sql injection. The…

  • CVE-2024-30866MedApr 1, 2024
    risk 0.35cvss 5.4epss 0.00

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /3g/menu.php.

  • CVE-2023-7094MedDec 25, 2023
    risk 0.35cvss 5.3epss 0.01

    A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected by this vulnerability is an unknown functionality of the file /protocol/nsasg6.0.tgz. The manipulation leads to information disclosure. The attack can be launched…

  • CVE-2024-30861MedApr 1, 2024
    risk 0.34cvss 5.3epss 0.00

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /admin/configguide/ipsec_guide_1.php.

  • CVE-2024-30872MedApr 1, 2024
    risk 0.33cvss 5.1epss 0.00

    netentsec NS-ASG 6.3 is vulnerable to SQL Injection via /include/authrp.php.

  • CVE-2023-5681MedOct 20, 2023
    risk 0.31cvss 4.7epss 0.01

    A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_addr_fwresource_ip.php. The manipulation leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-2648MedMar 19, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /nac/naccheck.php. The manipulation of the argument username leads to improper neutralization of data within xpath…

  • CVE-2024-2645MedMar 19, 2024
    risk 0.28cvss 4.3epss 0.01

    A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath…