CVE

CVE-2022-24407

CVE ID	CVE-2022-24407
CVSS Score	8.8
Operating System	CentOS
Affected Versions	CentOS 6
Patched Versions	2.1.23-15_ol001.el6.2
Patch Date	Fri, 04/11/2025 - 17:27

Additional Information

NVD Linking: https://nvd.nist.gov/vuln/detail/CVE-2022-24407

In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement.

< View all CVEs