Vulnerabilities > Trueconf > Server > 5.2.0.10225

DATE CVE VULNERABILITY TITLE RISK
2022-12-27 CVE-2022-46763 SQL Injection vulnerability in Trueconf Server 4.3.7.12219/4.3.7.12255/5.2.0.10225
A SQL injection issue in a database stored function in TrueConf Server 5.2.0.10225 allows a low-privileged database user to execute arbitrary SQL commands as the database administrator, resulting in execution of arbitrary code.
network
low complexity
trueconf CWE-89
8.8
8.8
2022-12-27 CVE-2022-46764 SQL Injection vulnerability in Trueconf Server 4.3.7.12219/4.3.7.12255/5.2.0.10225
A SQL injection issue in the web API in TrueConf Server 5.2.0.10225 allows remote unauthenticated attackers to execute arbitrary SQL commands, ultimately leading to remote code execution.
network
low complexity
trueconf CWE-89
critical
 9.8
9.8