Security Advisory

CVE-2024-9968

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-10-15 02:40:44

Last updated 2024-10-15 13:39:38

Assigner twcert

State PUBLISHED

Description

WebEIP v3.0 from NewType does not properly validate user input, allowing remote attackers with regular privilege to inject SQL commands to read, modify, and delete data stored in database. The affected product is no longer maintained. It is recommended to upgrade to the new product.

← Browse all CVEs View on cve.org ↗