CVE-2022-45589
published 2023-02-06CVE-2022-45589: All versions before 8.0.1-R2022-10-RT and 7.3.1-R2022-09-RT of the Talend ESB Runtime are potentially vulnerable to SQL Injection attacks in the provisioning…
PriorityP340high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
0.64%
45.9th percentile
All versions before 8.0.1-R2022-10-RT and 7.3.1-R2022-09-RT of the Talend ESB Runtime are potentially vulnerable to SQL Injection attacks in the provisioning service only. Users of the provisioning service should upgrade to either 8.0.1-R2022-10-RT or 7.3.1-R2022-09-RT or a later release and use it in place of the previous version.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| talend | esb_runtime | < 7.3.1-r2022-09-rt | 7.3.1-r2022-09-rt |
| talend | esb_runtime | >= 8.0 < 8.0.1-r2022-10-rt | 8.0.1-r2022-10-rt |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2023-02-06
Published