SQL Injection Vulnerability in ASUS Control Center

SQL Injection Vulnerability in ASUS Control Center

CVE-2022-26669 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general user privilege can inject SQL command to specific API parameters to acquire database schema or access data.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.