HIGH🇬🇧 English

CVE-2017-8002

CVSS 8.8v3.0pub. 2017-07-09upd. 2026-05-13

EMC Data Protection Advisor prior to 6.4 contains multiple blind SQL injection vulnerabilities. A remote authenticated attacker may potentially exploit these vulnerabilities to gain information about the application by causing execution of arbitrary SQL commands.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Emc Data Protection Advisor

    APP
    Emc
    ≤ 6.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
SQLi
CWE
Referencje

Powiązane podatności

CVE-2017-8013CRITICAL9.8ten sam produkt

EMC Data Protection Advisor 6.3.x before patch 67 and 6.4.x before patch 130 contains undocumented accounts wi...

CVE-2018-1206HIGH7.8ten sam produkt

Dell EMC Data Protection Advisor versions prior to 6.3 Patch 159 and Dell EMC Data Protection Advisor versions...

CVE-2017-10955HIGH8.8ten sam produkt

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of EMC Data P...

CVE-2012-0406HIGH7.8ten sam produkt

The DPA_Utilities.cProcessAuthenticationData function in EMC Data Protection Advisor (DPA) 5.5 through 5.8 SP1...

CVE-2017-8003MEDIUM4.9ten sam produkt

EMC Data Protection Advisor prior to 6.4 contains a path traversal vulnerability. A remote authenticated high ...

CVE-2017-8002 — HIGH 8.8 | CVEbaza.pl