CVE
CVE-2022-24407
| CVE ID |
CVE-2022-24407
|
|---|---|
| CVSS Score |
8.8
|
| Operating System | |
| Affected Versions |
CentOS 6
|
| Patched Versions |
2.1.23-15_ol001.el6.2
|
| Patch Date |
|
| Last Updated Date | |
| Vector String |
Additional Information
NVD Linking: https://nvd.nist.gov/vuln/detail/CVE-2022-24407
In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.