SQL injection vulnerability in main.ant in the ANTlabs InnGate firmware on IG 3100, InnGate 3.01 E, InnGate 3.10 E, InnGate 3.10 M, SG 4, and SSG 4 devices, when https is used, allows remote attackers to execute arbitrary SQL commands via the ppli parameter.
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:PAntlabs Inngate Ig 3.01 E
HWAntlabswszystkie wersjeAntlabs Inngate Ig 3100
HWAntlabswszystkie wersjeAntlabs Inngate Ig 3.10 E
HWAntlabswszystkie wersjeAntlabs Inngate Ig 3.10 M
HWAntlabswszystkie wersjeAntlabs Inngate Sg 4
HWAntlabswszystkie wersjeAntlabs Inngate Ssg 4
HWAntlabswszystkie wersje
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE