EUVD-2026-31422

ID: EUVD-2026-31422

Severity: high

CVSS v4: 8.7 (CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:L/SC:N/SI:N/SA:N)

CVSS v3: Not provided

CWE: None listed

Source: ENISA

Description

A SQL injection vulnerability has been identified in STER. Improper neutralization of input provided by user into multiple Search Filters allows for SQL Injection attacks. It allows an authenticated attacker to view sensitive data such as data belonging to other users, or any other data that the application itself is able to access This issue was fixed in version 9.5.

Timestamps

Normalized: 2026-05-22T10:16:02Z UTC
Last updated: 2026-05-22T10:16:02Z UTC

References

No references provided.

VulnAI

EUVD-2026-31422

Description

Timestamps

References