A CWE-89: Improper Neutralization of Special Elements vulnerability used in an SQL Command
('SQL Injection') vulnerability exists that could allow a user already authenticated on DCE to
access unauthorized content, change, or delete content, or perform unauthorized actions when
tampering with the mass configuration settings of endpoints on DCE.
Metrics
Affected Vendors & Products
References
History
Thu, 07 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: schneider
Published: 2023-07-12T06:41:30.783Z
Updated: 2024-11-07T14:46:11.017Z
Reserved: 2023-06-28T14:14:13.863Z
Link: CVE-2023-37197
Vulnrichment
Updated: 2024-08-02T17:09:33.407Z
NVD
Status : Modified
Published: 2023-07-12T07:15:10.500
Modified: 2024-11-21T08:11:10.457
Link: CVE-2023-37197
Redhat
No data.