Beijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via TunnelId that allows access to sensitive information.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NNetentsec Application Security Gateway
APPNetentsec6.3
π΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
Related vulnerabilities
CVE-2023-30242CRITICAL9.8ten sam produkt
NS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin/add_ikev2.php.
CVE-2024-2647HIGH7.3ten sam produkt
A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gat...
CVE-2023-7161HIGH7.3ten sam produkt
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. ...
CVE-2023-6903HIGH7.3ten sam produkt
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. ...
CVE-2024-6007MEDIUM5.3ten sam produkt
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. Th...