Описание
Damstra Smart Asset 2020.7 has SQL injection via the API/api/Asset originator parameter. This allows forcing the database and server to initiate remote connections to third party DNS servers.
Damstra Smart Asset 2020.7 has SQL injection via the API/api/Asset originator parameter. This allows forcing the database and server to initiate remote connections to third party DNS servers.
EPSS
Процентиль: 96%
0.26819
Средний
CVE ID
Связанные уязвимости
CVSS3: 9.1
nvd
больше 5 лет назад
Damstra Smart Asset 2020.7 has SQL injection via the API/api/Asset originator parameter. This allows forcing the database and server to initiate remote connections to third party DNS servers.
EPSS
Процентиль: 96%
0.26819
Средний