ICS-CERT Advisory: CSWorks Software SQL Injection Vulnerability (ICSA-14-135-01, May 15, 2014)

Created: Friday, May 16, 2014 - 12:11

Categories:

Cybersecurity

Researcher John Leitch, working with HP’s Zero Day Initiative (ZDI), has identified an SQL injection vulnerability in CSWorks’ CSWorks software framework. CSWorks has produced an updated version that mitigates this vulnerability. This vulnerability could be exploited remotely.

AFFECTED PRODUCTS

The following CSWorks software versions are affected:

CSWorks Version 2.5.5050.0 and prior.

Read ICS-CERT Advisory 14-135-01.

You are here

ICS-CERT Advisory: CSWorks Software SQL Injection Vulnerability (ICSA-14-135-01, May 15, 2014)

ICS-CERT Advisory: CSWorks Software SQL Injection Vulnerability (ICSA-14-135-01, May 15, 2014)

Related Resources

Footer Email Signup