CVE-2025-34112 | Riverbed SteelCentral NetExpress/SteelCentral NetProfiler 10.8.7 /api/common/1.0/login sql injection (Exploit 40108 / EDB-40108)

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in Riverbed SteelCentral NetExpress and SteelCentral NetProfiler 10.8.7. It has been declared as critical. This vulnerability affects unknown code of the file /api/common/1.0/login. The manipulation leads to sql injection.

This vulnerability was named CVE-2025-34112. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-34112 | Riverbed SteelCentral NetExpress/SteelCentral NetProfiler 10.8.7 /api/common/1.0/login sql injection (Exploit 40108 / EDB-40108)

Post correlati

CVE-2024-2452 | Eclipse ThreadX up to 6.3.x __portable_aligned_alloc buffer overflow

CVE-2023-42133 | PAX POS Terminal prior 11.1.61_20240226 on Android default permission

CVE-2024-58015 | Linux Kernel up to 6.13.2 print_array_to_buf_index length out-of-bounds

CVE-2023-48929 | Franklin Fueling Systems System Sentinel AnyWare 1.6.24.492 group_status.asp sid session fixiation