Multiple SQL injection vulnerabilities in (1) cd-mapping-db.c and (2) cd-device-db.c in colord before 0.1.15 allow local users to execute arbitrary SQL commands via vectors related to color devices and (a) device id, (b) property, or (c) profile id.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2011-12-10T17:00:00Z
Updated: 2024-09-17T02:22:02.465Z
Reserved: 2011-11-04T00:00:00Z
Link: CVE-2011-4349
Vulnrichment
No data.
NVD
Status : Modified
Published: 2011-12-10T17:55:01.600
Modified: 2024-11-21T01:32:17.287
Link: CVE-2011-4349
Redhat
No data.