Security Advisory

CVE-2024-2724

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-22 13:34:31

Last updated 2024-08-01 19:25:41

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in the CIGESv2 system, through /ajaxServiciosAtencion.php, in the idServicio parameter. The exploitation of this vulnerability could allow a remote user to retrieve all data stored in the database by sending a specially crafted SQL query.

← Browse all CVEs View on cve.org ↗