A vulnerability was found in Ericsson ECM up to 17.x. It has been classified as critical. Affected is an unknown code of the component User Profile Management Section. Upgrading to version 18.0 eliminates this vulnerability.
Ericsson ECM up to 17.x User Profile Management Section csv injection
- Virtual Patching
- September 18, 2021
- 7:04 am
CVE-2022-32405 : SOURCECODESTER PRISON MANAGEMENT SYSTEM 1.0 VIEW_PRISON.PHP ID SQL INJECTION
Description Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the ‘id’ parameter at /pms/admin/prisons/view_prison.php:4 References
CVE-2022-20651 : CISCO ADAPTIVE SECURITY DEVICE MANAGER LOG FILE
Description A vulnerability in the logging component of Cisco Adaptive Security Device Manager (ASDM) could allow an authenticated, local attacker
CVE-2022-32549 : APACHE SLING COMMONS LOG/SLING API NEUTRALIZATION FOR LOGS
Description Apache Sling Commons Log