CVE-2022-24206: SQL Injection
First published: Mon Feb 14 2022(Updated: )
Tongda2000 v11.10 was discovered to contain a SQL injection vulnerability in /mobile_seal/get_seal.php via the DEVICE_LIST parameter.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Tongda2000 Tongda Oa | =11.10 | |
| Tongda2000 Tongda Office Anywhere | =11.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-24206?
CVE-2022-24206 is a SQL injection vulnerability found in Tongda2000 v11.10.
How does CVE-2022-24206 affect the Tongda2000 software?
CVE-2022-24206 affects Tongda2000 v11.10 through the DEVICE_LIST parameter in /mobile_seal/get_seal.php.
What is the severity level of CVE-2022-24206?
CVE-2022-24206 has a severity level of 9.8 (Critical).
What is the Common Weakness Enumeration (CWE) ID for CVE-2022-24206?
The CWE ID for CVE-2022-24206 is CWE-89 (SQL Injection).
Are there any references or resources available for CVE-2022-24206?
Yes, you can find more information about CVE-2022-24206 at the following reference: http://note.youdao.com/noteshare?id=87fd3a0b18abf28fccd690e97c7ea3c6
- collector/nvd-index
- collector/nvd-api
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/tongda2000
- canonical/tongda2000 tongda oa
- version/tongda2000 tongda oa/11.10
- canonical/tongda2000 tongda office anywhere
- version/tongda2000 tongda office anywhere/11.10