CNNVD-202507-3501 Information

CNNVD ID

CNNVD-202507-3501

Related CVE

CVE-2025-6918

• CNNVD Published: 2025-07-28

Description (Chinese)

Ncvav Virtual PBX Software是土耳其Ncvav公司的一款电话交换系统。 Ncvav Virtual PBX Software 2025.07.09之前版本存在SQL注入漏洞，该漏洞源于特殊元素中和不当，容易受到SQL注入攻击。

Description (English)

Ncvav Virtual PBX Software is a telephone exchange system of Ncvav Turkey. The previous version of Ncvav Virtual PBX Software 2025.07.09 had an injection loophole in SQL, which originated in the inappropriateness of special elements and was vulnerable to SQL injections.

Hazard Level

Low

Vulnerability Type

SQL注入

Affected Vendor

Ncvav

Published

2025-07-28

Last Modified

2026-02-24

References

https://www.usom.gov.tr/bildirim/tr-25-0180 https://access.redhat.com/security/cve/cve-2025-6918

Patch

https://www.virtualpbx.com/