HIGHπŸ‡΅πŸ‡± Wersja polska

CVE-2023-30243

CVSS 7.5v3.1pub. 2023-05-05upd. 2026-07-05

Beijing Netcon NS-ASG Application Security Gateway v6.3 is vulnerable to SQL Injection via TunnelId that allows access to sensitive information.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Netentsec Application Security Gateway

    APP
    Netentsec
    6.3
πŸ”΅
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
SQLi
CWE
References

Related vulnerabilities

CVE-2023-30242CRITICAL9.8ten sam produkt

NS-ASG v6.3 was discovered to contain a SQL injection vulnerability via the component /admin/add_ikev2.php.

CVE-2024-2647HIGH7.3ten sam produkt

A vulnerability, which was classified as critical, has been found in Netentsec NS-ASG Application Security Gat...

CVE-2023-7161HIGH7.3ten sam produkt

A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. ...

CVE-2023-6903HIGH7.3ten sam produkt

A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. ...

CVE-2024-6007MEDIUM5.3ten sam produkt

A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3. Th...

CVE-2023-30243 β€” Netentsec β€” Application Security Gateway β€” HIGH β€” CVSS 7.5 | CVEbaza.pl