exploitDog

CVE-2014-6080

Опубликовано: 18 дек. 2014

Источник: nvd

CVSS2: 6.5

EPSS Низкий

Описание

SQL injection vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ibm:security_access_manager_for_mobile:8.0:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:a:ibm:security_access_manager_for_web:7.0:*:*:*:*:*:*:*

cpe:2.3:a:ibm:security_access_manager_for_web:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 51%

0.00278

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-grf9-gh89-686m

github

больше 3 лет назад

SQL injection vulnerability in IBM Security Access Manager for Mobile 8.x before 8.0.1 and Security Access Manager for Web 7.x before 7.0.0 FP10 and 8.x before 8.0.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

EPSS

Процентиль: 51%

0.00278

Низкий

6.5 Medium

CVSS2

Дефекты

CWE-89