Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Center Security: Server Advanced Server (DCS:SA) 6.x before 6.5 MP1 and 6.6 before MP1, and Data Center Security: Server Advanced Server and Agents (DCS:SA) through 6.6 MP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Symantec Embedded Security:Critical System Protection和Symantec Data Center Security: Server Advanced SQL注入漏洞
Vulnerability Description
Symantec Embedded Security:Critical System Protection(SES:CSP)和Symantec Data Center Security: Server Advanced(SDCS:SA)都是美国赛门铁克(Symantec)公司的安全产品。SES:CSP是一款轻量级的入侵检测和防御系统客户端产品;SDCS:SA为软件定义数据中心的物理和虚拟服务器提供了安全防护。 SES:CSP和SDCS:SA的Management server中存在SQL注入漏洞。攻击者可
CVSS Information
N/A
Vulnerability Type
N/A