SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: symantec
Published: 2015-01-21T11:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2014-10-02T00:00:00
Link: CVE-2014-7289
JSON object: View
NVD Information
Status : Modified
Published: 2015-01-21T15:17:02.353
Modified: 2021-08-04T18:56:05.773
Link: CVE-2014-7289
JSON object: View
Redhat Information
No data.
CWE