Security Advisory

CVE-2022-32456

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-20 02:00:37

Last updated 2024-09-16 16:18:57

Assigner twcert

State PUBLISHED

Description

Digiwin BPM’s function has insufficient validation for user input. An unauthenticated remote attacker can inject arbitrary SQL command to access, modify, delete database or disrupt service.

← Browse all CVEs View on cve.org ↗