CVE-2024-10378

A vulnerability classified as critical has been found in ESAFENET CDG 5. Affected is the function actionViewCDGRenewFile of the file /com/esafenet/servlet/client/CDGRenewApplicationService.java. The manipulation of the argument CDGRenewFileId leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Configurations

Configuration 1 (hide)

cpe:2.3:a:esafenet:cdg:5:*:*:*:*:*:*:*

History

30 Oct 2024, 23:58

Type Values Removed Values Added
First Time Esafenet
Esafenet cdg
Summary
  • (es) Se ha encontrado una vulnerabilidad clasificada como crítica en ESAFENET CDG 5. La función actionViewCDGRenewFile del archivo /com/esafenet/servlet/client/CDGRenewApplicationService.java está afectada. La manipulación del argumento CDGRenewFileId provoca una inyección SQL. Es posible lanzar el ataque de forma remota. El exploit se ha hecho público y puede utilizarse. Se contactó al proveedor con anticipación sobre esta revelación, pero no respondió de ninguna manera.
CPE cpe:2.3:a:esafenet:cdg:5:*:*:*:*:*:*:*
References () https://flowus.cn/share/5d03f1d5-695a-421b-8445-2273774ea97a?code=G8A6P3 - () https://flowus.cn/share/5d03f1d5-695a-421b-8445-2273774ea97a?code=G8A6P3 - Exploit
References () https://vuldb.com/?ctiid.281808 - () https://vuldb.com/?ctiid.281808 - Permissions Required
References () https://vuldb.com/?id.281808 - () https://vuldb.com/?id.281808 - Third Party Advisory
References () https://vuldb.com/?submit.426086 - () https://vuldb.com/?submit.426086 - Third Party Advisory
CVSS v2 : 6.5
v3 : 6.3
v2 : 6.5
v3 : 9.8

25 Oct 2024, 12:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-25 12:15

Updated : 2024-10-30 23:58


NVD link : CVE-2024-10378

Mitre link : CVE-2024-10378

CVE.ORG link : CVE-2024-10378


JSON object : View

Products Affected

esafenet

  • cdg
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')