CNNVD-202506-3118 Information

Jun 24, 2025 cve

CNNVD ID

CNNVD-202506-3118

CVE-2025-49853

  • CNNVD Published: 2025-06-24

Description (Chinese)

Control iD iDSecure On-premises是巴西Control iD公司的一款访问控制软件,用于管理人员和车辆的进出。 Control iD iDSecure On-premises 4.7.48.0及之前版本存在SQL注入漏洞,该漏洞源于SQL注入,可能导致泄露任意信息和插入任意SQL语法。

Description (English)

Control iD Secure On-premises is a access control software for managers and vehicles of the Brazilian company Control iD. Control iD idSecure On-premises 4.7.48.0 and earlier versions had an injection loophole in SQL, which originated in SQL injections and could lead to the disclosure of any information and the insertion of any SQL syntax.

Hazard Level

Low

Vulnerability Type

SQL注入

Affected Vendor

Control iD

Published

2025-06-24

Last Modified

2026-02-24

References

https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-05

Patch

https://www.controlid.com.br/en/access-control/idsecure/

Share on: