Security Advisory

CVE-2022-43437

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-01-03 00:00:00

Last updated 2025-04-10 16:46:55

Assigner twcert

State PUBLISHED

Description

The Download function’s parameter of EasyTest has insufficient validation for user input. A remote attacker authenticated as a general user can inject arbitrary SQL command to access, modify or delete database.

← Browse all CVEs View on cve.org ↗