exploitDog

GHSA-4cvf-2x9p-w298

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.

SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.

Ссылки

EPSS

Процентиль: 68%

0.00563

Низкий

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2014-3326

nvd

больше 11 лет назад

SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.

EPSS

Процентиль: 68%

0.00563

Низкий

CVE ID

Дефекты

CWE-89