CVE-2022-28623: SQL Injection
First published: Fri Jul 08 2022(Updated: )
Security vulnerabilities in HPE IceWall SSO 10.0 certd could be exploited remotely to allow SQL injection or unauthorized data injection. HPE has provided the following updated modules to resolve these vulnerabilities. HPE IceWall SSO version 10.0 certd library Patch 9 for RHEL and HPE IceWall SSO version 10.0 certd library Patch 9 for HP-UX.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hpe Icewall Sso Certd | =10.0 | |
| HP HP-UX | ||
| Redhat Enterprise Linux |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-28623?
The severity of CVE-2022-28623 is critical, with a severity value of 9.8.
What is the affected software for CVE-2022-28623?
The affected software for CVE-2022-28623 is HPE IceWall SSO 10.0 certd.
How can CVE-2022-28623 be exploited?
CVE-2022-28623 can be exploited remotely to allow SQL injection or unauthorized data injection.
What is the recommended action for CVE-2022-28623?
To resolve CVE-2022-28623, HPE has provided updated modules that need to be installed.
Where can I find more information about CVE-2022-28623?
You can find more information about CVE-2022-28623 in the reference provided by HPE.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/hpe
- canonical/hpe icewall sso certd
- version/hpe icewall sso certd/10.0
- vendor/hp
- canonical/hp hp-ux
- vendor/redhat
- canonical/redhat enterprise linux