CVE-2024-2330 | Netentsec NS-ASG Application Security Gateway 6.3 /protocol/index.php IPAddr sql injection

Posted by Angelo Barbosa | Mar 8, 2024 | CVE

A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/index.php. The manipulation of the argument IPAddr leads to sql injection.

This vulnerability is uniquely identified as CVE-2024-2330. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-2330 | Netentsec NS-ASG Application Security Gateway 6.3 /protocol/index.php IPAddr sql injection

Related Posts

CVE-2024-5449 | WP Dark Mode Plugin up to 5.0.4 on WordPress authorization

CVE-2024-20120 | MediaTek MT8798 out-of-bounds write (MSV-1575 / ALPS08956986)

CVE-2023-6565 | InfiniteWP Client Plugin up to 1.12.3 on WordPress information disclosure

CVE-2023-46589 | Apache Tomcat up to 8.5.95/9.0.82/10.1.15/11.0.0-M10 HTTP Trailer Header request smuggling