Netentsec Ns-Asg Application Security Gateway vulnerabilities
29 known vulnerabilities affecting netentsec/ns-asg_application_security_gateway.
Total CVEs
29
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL23HIGH4MEDIUM2
Vulnerabilities
Page 2 of 2
CVE-2024-3455P3CRITICALCVSS 9.8v6.32024-04-08
CVE-2024-3455 [CRITICAL] CWE-89 CVE-2024-3455: A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/add_postlogin.php. The manipulation of the argument SingleLoginId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to
nvd
CVE-2023-7161P3CRITICALCVSS 9.8v6.3.12023-12-29
CVE-2023-7161 [CRITICAL] CWE-89 CVE-2023-7161: A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gatew
A vulnerability classified as critical has been found in Netentsec NS-ASG Application Security Gateway 6.3.1. This affects an unknown part of the file index.php?para=index of the component Login. The manipulation of the argument check_VirtualSiteId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed
nvd
CVE-2023-5700P3CRITICALCVSS 9.8v6.32023-10-23
CVE-2023-5700 [CRITICAL] CWE-89 CVE-2023-5700: A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Securit
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /protocol/iscgwtunnel/uploadiscgwrouteconf.php. The manipulation of the argument GWLinkId leads to sql injection. The exploit has been disclosed to the public and may be used. VDB-243138 is the
nvd
CVE-2023-5826P3HIGHCVSS 8.8v6.32023-10-27
CVE-2023-5826 [HIGH] CWE-89 CVE-2023-5826: A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as cri
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/list_onlineuser.php. The manipulation of the argument SessionId leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vuln
nvd
CVE-2023-5785P3HIGHCVSS 7.5v6.32023-10-26
CVE-2023-5785 [HIGH] CWE-89 CVE-2023-5785: A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classifi
A vulnerability was found in Netentsec NS-ASG Application Security Gateway 6.3. It has been classified as critical. This affects an unknown part of the file /protocol/firewall/addaddress_interpret.php. The manipulation of the argument messagecontent leads to sql injection. The exploit has been disclosed to the public and may be used. The associated ident
nvd
CVE-2023-5681P3HIGHCVSS 7.2v6.32023-10-20
CVE-2023-5681 [HIGH] CWE-89 CVE-2023-5681: A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Securit
A vulnerability, which was classified as critical, was found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /admin/list_addr_fwresource_ip.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifie
nvd
CVE-2023-7094P3HIGHCVSS 7.5v6.32023-12-25
CVE-2023-7094 [HIGH] CWE-200 CVE-2023-7094: A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway
A vulnerability classified as problematic was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected by this vulnerability is an unknown functionality of the file /protocol/nsasg6.0.tgz. The manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The i
nvd
CVE-2024-2648P4MEDIUMCVSS 5.3v6.32024-03-19
CVE-2024-2648 [MEDIUM] CWE-643 CVE-2024-2648: A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Secu
A vulnerability, which was classified as problematic, was found in Netentsec NS-ASG Application Security Gateway 6.3. Affected is an unknown function of the file /nac/naccheck.php. The manipulation of the argument username leads to improper neutralization of data within xpath expressions. It is possible to launch the attack remotely. The exploit has b
nvd
CVE-2024-2645P4MEDIUMCVSS 5.3v6.32024-03-19
CVE-2024-2645 [MEDIUM] CWE-643 CVE-2024-2645: A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Ga
A vulnerability classified as problematic has been found in Netentsec NS-ASG Application Security Gateway 6.3. This affects an unknown part of the file /vpnweb/resetpwd/resetpwd.php. The manipulation of the argument UserId leads to improper neutralization of data within xpath expressions. It is possible to initiate the attack remotely. The exploit has
nvd
← Previous2 / 2