CVE-2022-24121

CVE-2022-24121

EPSS 1.3%

SQL Injection vulnerability discovered in Unified Office Total Connect Now that would allow an attacker to extract sensitive information through a cookie parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://unifiedoffice.com/total-connect-now/https://www.coresecurity.com/core-labs/advisories/unified-office-total-connect-sql-injection