Siemens Syngo.Plaza Vb30E vulnerabilities
2 known vulnerabilities affecting siemens/syngo.plaza_vb30e.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2024-52335P2CRITICALCVSS 9.8fixed in VB30E_HF052024-12-06
CVE-2024-52335 [CRITICAL] CWE-89 CVE-2024-52335: A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF05). The affected a
A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF05). The affected application do not properly sanitize input data before sending it to the SQL server. This could allow an attacker with access to the application could use this vulnerability to execute malicious SQL commands to compromise the whole database.
nvd
CVE-2024-52334P4MEDIUMCVSS 5.3fixed in VB30E_HF072026-02-10
CVE-2024-52334 [MEDIUM] CWE-261 CVE-2024-52334: A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF07). The affected a
A vulnerability has been identified in syngo.plaza VB30E (All versions < VB30E_HF07). The affected application does not encrypt the passwords properly.
This could allow an attacker to recover the original passwords and might gain unauthorized access.
nvd