Описание
Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. Lack of sanitization of user-supplied input cause SQL injection vulnerabilities. An attacker can leverage these vulnerabilities to disclose information.
Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. Lack of sanitization of user-supplied input cause SQL injection vulnerabilities. An attacker can leverage these vulnerabilities to disclose information.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-18229
- https://www.us-cert.gov/ics/advisories/icsa-19-304-01
- https://www.zerodayinitiative.com/advisories/ZDI-19-937
- https://www.zerodayinitiative.com/advisories/ZDI-19-938
- https://www.zerodayinitiative.com/advisories/ZDI-19-940
- https://www.zerodayinitiative.com/advisories/ZDI-19-948
- https://www.zerodayinitiative.com/advisories/ZDI-19-949
- https://www.zerodayinitiative.com/advisories/ZDI-19-951
- https://www.zerodayinitiative.com/advisories/ZDI-19-952
- https://www.zerodayinitiative.com/advisories/ZDI-19-955
- https://www.zerodayinitiative.com/advisories/ZDI-19-956
- https://www.zerodayinitiative.com/advisories/ZDI-19-957
Связанные уязвимости
CVSS3: 6.5
nvd
больше 6 лет назад
Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. Lack of sanitization of user-supplied input cause SQL injection vulnerabilities. An attacker can leverage these vulnerabilities to disclose information.