Hillstone Networks

RULE（RULE ID：338302）

Rule General Information


Release Date:		2024-08-13

Rule Name:		SEEYON FE Collaboration Platform apprvaddNew SQL Injection Vulnerability

Severity:

CVE ID:

Rule Protection Details


Description:		SEEYON FE collaboration office platform is an enterprise level software platform integrating multiple office tools and functions, aiming to improve team collaboration efficiency and work efficiency. There is a SQL injection vulnerability in SEEYON FE collaboration office platform apprvaddNew. An attacker can use the vulnerability to execute malicious SQL code, which may lead to data disclosure, data damage, service interruption and even complete control of the entire database system, posing a serious threat to enterprise data security.

Impact:		An attacker can inject arbitrary sql commands to view or change the database of the target by exploiting the vulnerability successfully.

Affected OS:		Windows, Linux, Others

Reference:

Solutions

Please contact the software vendor to update the software patch.