SQL Injection Vulnerability in GoldenDB Database from ZTE Corporation
CVE-2025-46577
7.5HIGH
What is CVE-2025-46577?
A SQL injection vulnerability in the GoldenDB database allows attackers to execute malicious SQL queries, potentially enabling them to extract sensitive data and compromise database integrity. Proper validation and sanitization of input data are essential to mitigate this risk.
Affected Version(s)
GoldenDB Linux 6.1.03 <= 6.1.03.10
GoldenDB Linux 7.2.01.01
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved