An LDAP injection vulnerability in the login page of Gladinet CentreStack v13.12.9934.54690 allows attackers to access sensitive data or execute arbitrary commands via a crafted payload injected into the username field.
Metrics
Affected Vendors & Products
References
History
Wed, 27 Nov 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Gladinet
Gladinet centrestack |
|
Weaknesses | CWE-77 | |
CPEs | cpe:2.3:a:gladinet:centrestack:-:*:*:*:*:*:*:* | |
Vendors & Products |
Gladinet
Gladinet centrestack |
|
Metrics |
cvssV3_1
|
Fri, 22 Nov 2024 17:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | An LDAP injection vulnerability in the login page of Gladinet CentreStack v13.12.9934.54690 allows attackers to access sensitive data or execute arbitrary commands via a crafted payload injected into the username field. | |
References |
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2024-11-22T00:00:00
Updated: 2024-11-27T16:51:37.606Z
Reserved: 2024-06-10T00:00:00
Link: CVE-2024-37782
Vulnrichment
Updated: 2024-11-27T16:51:31.802Z
NVD
Status : Awaiting Analysis
Published: 2024-11-22T18:15:17.230
Modified: 2024-11-27T17:15:11.320
Link: CVE-2024-37782
Redhat
No data.