CVE-2022-25225
CVE-2022-25225
Network Olympus version 1.8.0 allows an authenticated admin user to inject SQL queries in '/api/eventinstance' via the 'sqlparameter' JSON parameter. It is also possible to achieve remote code execution in the default installation (PostgreSQL) by exploiting this issue.
Produtos afetados
n/a · Network OlympusQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →