Skip to main content

Next Gen Application Firewall

5 CVEs product

Monthly

CVE-2023-30806 CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Next Gen Application Firewall
NVD
CVSS 3.1
9.8
EPSS
65.8%
CVE-2023-30805 CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Next Gen Application Firewall
NVD
CVSS 3.1
9.8
EPSS
65.8%
CVE-2023-30804 MEDIUM POC THREAT This Month

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Next Gen Application Firewall
NVD
CVSS 3.1
6.5
EPSS
12.8%
CVE-2023-30803 CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Next Gen Application Firewall
NVD
CVSS 3.1
9.8
EPSS
18.2%
CVE-2023-30802 MEDIUM POC This Month

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Next Gen Application Firewall
NVD
CVSS 3.1
5.3
EPSS
0.6%
EPSS 66% CVSS 9.8
CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Command Injection Next Gen Application Firewall
NVD
EPSS 66% CVSS 9.8
CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an operating system command injection vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

PHP Command Injection Next Gen Application Firewall
NVD
EPSS 13% CVSS 6.5
MEDIUM POC THREAT This Month

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Next Gen Application Firewall
NVD
EPSS 18% CVSS 9.8
CRITICAL POC THREAT Act Now

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Next Gen Application Firewall
NVD
EPSS 1% CVSS 5.3
MEDIUM POC This Month

The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure PHP Next Gen Application Firewall
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy