Описание
SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter.
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:redhat:cloudforms_3.1_management_engine:5.3:*:*:*:*:*:*:*
EPSS
Процентиль: 54%
0.00311
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-89
Связанные уязвимости
redhat
около 11 лет назад
SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter.
github
больше 3 лет назад
SQL injection vulnerability in Red Hat CloudForms 3.1 Management Engine (CFME) 5.3 allows remote authenticated users to execute arbitrary SQL commands via a crafted REST API request to an SQL filter.
EPSS
Процентиль: 54%
0.00311
Низкий
6.5 Medium
CVSS2
Дефекты
CWE-89