CVE-2024-12706
SQL Injection vulnerability discovered in OpenText™ Digital Asset Management.
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenText™ Digital Asset Management. T
he vulnerability could allow an authenticated user to run arbitrary SQL commands on the underlying database.
This issue affects Digital Asset Management.: through 24.4.
CVSS:4.0/AV:L/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:L/SA:L/S:N/AU:N/R:A/V:C/RE:M/U:Red
Produtos afetados
OpenText™ · Digital Asset Management.Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →