CVE-2025-55703 in Power IQinformación

Resumen

por MITRE • 2025-12-15

An error-based SQL injection vulnerability exists in the Sunbird Power IQ 9.2.0 API. The vulnerability is due to an outdated API endpoint that applied arrays without proper input validation. This can allow attackers to manipulate SQL queries. This has been addressed in Power IQ version 9.2.1, where the API call code was updated to ensure safe handling of input values.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Responsable

MITRE

Reservar

2025-08-13

Divulgación

2025-12-15

Moderación

aceptado

Artículo

VDB-336504

CPE

listo

EPSS

0.00117

KEV

no

Actividades

muy bajo

Fuentes

Do you need the next level of professionalism?

Upgrade your account now!