CNNVD-202512-177 Information
Dec 02, 2025
cve
CNNVD ID
CNNVD-202512-177
Related CVE
- CNNVD Published: 2025-12-02
Description (Chinese)
Axios Systems Assyst是英国Axios Systems公司的一款现成的应用程序,用于管理 IT 服务,没有与 ServiceNow 和 BMC Remedy 等 ITSM 平台相关的复杂性和开销。 Axios Systems Assyst存在安全漏洞,该漏洞源于特制dict键可能导致任意SQL命令执行。
Description (English)
Axios Systems Assyst is an off-the-shelf application of the British company Axios Systems to manage IT services without the complexity and cost associated with ITSM platforms such as ServiceNow and BMC Remedy. There is a security loophole in Axios Systems Assyst, which stems from the fact that a special dict key may result in any SQL order being executed.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Axios Systems
Published
2025-12-02
Last Modified
2026-02-24
References
https://github.com/long2ice/asyncmy https://github.com/long2ice/asyncmy/issues/134
Share on: