CDG — Vulnerabilities & Security Advisories 49

All 49 CVE vulnerabilities found in CDG, with AI-generated Chinese analysis, references, and POCs.

Vendor: ESAFENET

CVE ID	Title	CVSS	Severity	Paused
CVE-2024-10502	ESAFENET CDG FileDirectoryService.java getOneFileDirectory sql injection CWE-89	6.3	Medium	2024-10-30
CVE-2024-10501	ESAFENET CDG ExamCDGDocService.java findById sql injection CWE-89	6.3	Medium	2024-10-30
CVE-2024-10500	ESAFENET CDG HookWhiteListService.java sql injection CWE-89	6.3	Medium	2024-10-30
CVE-2024-10379	ESAFENET CDG DecryptApplicationService.java actionViewDecyptFile path traversal CWE-24	4.3	Medium	2024-10-25
CVE-2024-10378	ESAFENET CDG CDGRenewApplicationService.java actionViewCDGRenewFile sql injection CWE-89	6.3	Medium	2024-10-25
CVE-2024-10377	ESAFENET CDG DecryptApplicationService.java actionPassDecryptApplication1 sql injection CWE-89	6.3	Medium	2024-10-25
CVE-2024-10376	ESAFENET CDG AutoSignService.java actionPassOrNotAutoSign sql injection CWE-89	6.3	Medium	2024-10-25
CVE-2024-10279	ESAFENET CDG PrintPolicyService.java sql injection CWE-89	6.3	Medium	2024-10-23
CVE-2024-10278	ESAFENET CDG ReUserOrganiseService.java sql injection CWE-89	6.3	Medium	2024-10-23
CVE-2024-10277	ESAFENET CDG UsbKeyAjax.java sql injection CWE-89	6.3	Medium	2024-10-23
CVE-2024-10135	ESAFENET CDG NetSecConfigService.java actionDelNetSecConfig sql injection CWE-89	6.3	Medium	2024-10-19
CVE-2024-10134	ESAFENET CDG MultiServerAjax.java connectLogout sql injection CWE-89	6.3	Medium	2024-10-19
CVE-2024-10133	ESAFENET CDG NetSecPolicyAjax.java updateNetSecPolicyPriority sql injection CWE-89	6.3	Medium	2024-10-19
CVE-2024-10072	ESAFENET CDG EncryptPolicyService.java actionAddEncryptPolicyGroup sql injection CWE-89	6.3	Medium	2024-10-17
CVE-2024-10071	ESAFENET CDG EncryptPolicyService.java actionUpdateEncryptPolicyEdit sql injection CWE-89	6.3	Medium	2024-10-17
CVE-2024-10070	ESAFENET CDG PolicyPushControlAction.java actionPolicyPush sql injection CWE-89	6.3	Medium	2024-10-17
CVE-2024-10069	ESAFENET CDG MailDecryptApplicationService.java actionPassMainApplication sql injection CWE-89	6.3	Medium	2024-10-17
CVE-2024-9560	ESAFENET CDG Catelogs;logindojojs delCatelogs sql injection CWE-89	6.3	Medium	2024-10-06
CVE-2024-9536	ESAFENET CDG MultiServerBackService sql injection CWE-89	6.3	Medium	2024-10-05

All 49 known CVE vulnerabilities affecting CDG with full Chinese analysis, references, and POCs where available.