Security Advisory

CVE-2024-5311

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-06-03 06:26:52

Last updated 2024-08-01 21:11:12

Assigner twcert

State PUBLISHED

Description

DigiWin EasyFlow .NET lacks validation for certain input parameters. An unauthenticated remote attacker can inject arbitrary SQL commands to read, modify, and delete database records.

← Browse all CVEs View on cve.org ↗