CNNVD-202601-1659 Information
Jan 09, 2026
cve
CNNVD ID
CNNVD-202601-1659
Related CVE
- CNNVD Published: 2026-01-09
Description (Chinese)
Zenitel ICX500和Zenitel ICX510都是挪威Zenitel公司的一款通信与控制平台。 Zenitel ICX500和Zenitel ICX510存在安全漏洞,该漏洞源于未经身份验证的攻击者可将SQL请求注入GET请求参数并直接查询底层数据库。
Description (English)
Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms of the Norwegian company Zenitel. There is a security gap between Zenitel ICX500 and Zenitel ICX510, which stems from the fact that unidentified assailants can inject SQL requests into the GET request parameters and directly search the bottom database.
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
Zenitel
Published
2026-01-09
Last Modified
2026-02-24
References
https://www.zenitel.com/sites/default/files/2025-12/A100K12333%20Zenitel%20Security%20Advisory.pdf
Patch
https://www.zenitel.com/sites/default/files/2025-12/A100K12333%20Zenitel%20Security%20Advisory.pdf
Share on: