CVE-2024-10501: ESAFENET CDG ExamCDGDocService.java findById sql injection
First published: Wed Oct 30 2024(Updated: )
A vulnerability, which was classified as critical, was found in ESAFENET CDG 5. This affects the function findById of the file /com/esafenet/servlet/document/ExamCDGDocService.java. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gemalto SafeNet CDG | =5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2024-10501?
CVE-2024-10501 is classified as a critical vulnerability.
How does CVE-2024-10501 affect ESAFENET CDG 5?
CVE-2024-10501 affects the findById function in the ExamCDGDocService.java file, leading to SQL injection vulnerabilities.
What are the potential impacts of exploiting CVE-2024-10501?
Exploitation of CVE-2024-10501 could allow attackers to execute unauthorized SQL queries on the database.
How do I fix CVE-2024-10501?
To fix CVE-2024-10501, update ESAFENET CDG to a version that addresses this SQL injection vulnerability.
Is CVE-2024-10501 remotely exploitable?
Yes, CVE-2024-10501 can be exploited remotely due to its nature and affected software configuration.
- agent/title
- agent/weakness
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/esafenet
- canonical/gemalto safenet cdg
- version/gemalto safenet cdg/5