ГлавнаяУязвимости → CVE-2025-49853
9.1критическая

CVE-2025-49853

Описание

ControlID iDSecure On-premises versions 4.7.48.0 and prior are vulnerable to SQL injections which could allow an attacker to leak arbitrary information and insert arbitrary SQL syntax into SQL queries.

Затрагиваемое ПО
Assaabloy Control id idsecure
CVSS
Балл9.1 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Источники
https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-05