CVE-2022-4259 Information

Description

Due to improper input validation in the Alerts controller a SQL injection vulnerability in Nozomi Networks Guardian and CMC allows an authenticated attacker to execute arbitrary SQL queries on the DBMS used by the web application.

Reference

https://security.nozominetworks.com/NN-2023:1-01