Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A10 ACOS Web Application Firewall (WAF) 2.7.1 and 2.7.2 before 2.7.2-P12, 4.1.0 before 4.1.0-P11, 4.1.1 before 4.1.1-P8, and 4.1.2 before 4.1.2-P4 mishandles the configured rules for blocking SQL injection attacks, aka A10-2017-0008.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
A10 ACOS Web Application Firewall SQL注入漏洞
Vulnerability Description
A10 ACOS Web Application Firewall(WAF)是美国睿科网络(A10 Networks)公司的Web应用程序防火墙,它能够防止注入、跨站脚本和跨站请求伪造等漏洞。 A10 ACOS WAF中存在SQL注入漏洞,该漏洞源于程序没有正确处理配置规则。攻击者可通过发送特制的SQL语句利用该漏洞执行任意SQL命令。以下版本受到影响:A10 ACOS Web Application Firewall 2.7.1版本,2.7.2-P12之前的2.7.2 版本,4.1.0-P11之前的4.
CVSS Information
N/A
Vulnerability Type
N/A