Headline

CVE-2022-22280

Improper Neutralization of Special Elements used in an SQL Command leading to Unauthenticated SQL Injection vulnerability, impacting SonicWall GMS 9.3.1-SP2-Hotfix1, Analytics On-Prem 2.5.0.3-2520 and earlier versions.

2 years ago

CVE

Open in Source

#sql #vulnerability #auth

SonicWall GMS and Analytics are vulnerable to an SQL injection bug, tracked as CVE-2022-22280. The post SonicWall urges customers to patch critical SQL injection bug ASAP appeared first on Malwarebytes Labs.

2 years ago

Malwarebytes

Open in Source

#sql #vulnerability #web #auth #sap

SonicWall Issues Patch for Critical Bug Affecting its Analytics and GMS Products

Network security company SonicWall on Friday rolled out fixes to mitigate a critical SQL injection (SQLi) vulnerability affecting its Analytics On-Prem and Global Management System (GMS) products. The vulnerability, tracked as CVE-2022-22280, is rated 9.4 for severity on the CVSS scoring system and stems from what the company describes is an "improper neutralization of special elements" used in

2 years ago

The Hacker News

Open in Source

#sql #vulnerability #web #auth #The Hacker News