5 matches found
CVE-2024-10376
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql injection. The attack c...
CVE-2024-10376
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql injection. The attack c...
CVE-2024-10376 ESAFENET CDG AutoSignService.java actionPassOrNotAutoSign sql injection
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql injection. The attack c...
CVE-2024-10376 ESAFENET CDG AutoSignService.java actionPassOrNotAutoSign sql injection
A vulnerability was found in ESAFENET CDG 5. It has been declared as critical. This vulnerability affects the function actionPassOrNotAutoSign of the file /com/esafenet/servlet/service/processsign/AutoSignService.java. The manipulation of the argument UniqueId leads to sql injection. The attack c...
CVE-2024-10376
Consolidated details from connected documents confirm CVE-2024-10376 affects ESAFENET CDG version 5, specifically the actionPassOrNotAutoSign function in AutoSignService.java. The root cause is manipulation of the UniqueId parameter leading to SQL injection, exploitable remotely and publicized. T...