← volver
CVE-2022-46763

CVE-2022-46763

CVSS 8.8 HIGHEPSS 1.1%CWE-89
A SQL injection issue in a database stored function in TrueConf Server 5.2.0.10225 (fixed in 5.2.6.10025) allows a low-privileged database user to execute arbitrary SQL commands as the database administrator, resulting in execution of arbitrary code.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Productos afectados
TrueConf · TrueConf Server

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://github.com/sldlb/public_cve_submissions/blob/main/CVE-2022-46763.txthttps://solidlab.ru/our-news/145-trueconf.htmlhttps://vuldb.com/?diff.216851