exploitDog

CVE-2013-3437

Опубликовано: 23 июл. 2013

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud80179.

Ссылки

http://osvdb.org/95472
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3437
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=30153
Vendor Advisory
http://osvdb.org/95472
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3437
Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=30153
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:unified_operations_manager:-:*:*:*:*:*:*:*

EPSS

Процентиль: 57%

0.00351

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-6c86-m3mj-rj89

github

больше 3 лет назад

SQL injection vulnerability in the management application in Cisco Unified Operations Manager allows remote authenticated users to execute arbitrary SQL commands via an entry field, aka Bug ID CSCud80179.

EPSS

Процентиль: 57%

0.00351

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89