CVE-2022-48602 in SL1المعلومات

الملخص

بحسب MITRE • 09/08/2023

A SQL injection vulnerability exists in the “message viewer print” feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

Securifera, Inc.

حجز

09/08/2023

إفشاء

09/08/2023

الاعتدال

تمت الموافقة

إدخال

VDB-236698

EPSS

0.00608

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!