Unknown · Cdg-Server · CVE-2024-35563
**Name of the Vulnerable Software and Affected Versions**
CDG-Server versions 5.6.2.126.139 and earlier
**Description**
A SQL injection issue was found via the `permissionId` parameter in CDGTempPermissions. This allows for potential exploitation. No information is provided about the estimated number of affected devices or real-world incidents.
**Recommendations**
For CDG-Server versions 5.6.2.126.139 and earlier, consider restricting access to the `permissionId` parameter in CDGTempPermissions to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.