Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenNMS Horizon and Meridian allows HQL Injection in element/nodeList.htm (aka the NodeListController) via snmpParm or snmpParmValue to addCriteriaForSnmpParm. This affects Horizon before 25.2.1, Meridian 2019 before 2019.1.4, Meridian 2018 before 2018.1.16, and Meridian 2017 before 2017.1.21.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
OpenNMS Horizon和Meridian SQL注入漏洞
Vulnerability Description
Opennms Group OpenNMS是美国OpenNMS Group(Opennms Group)公司的一套开源的企业级网络监视和网络管理平台。 OpenNMS Horizon和Meridian中的element/nodeList.htm存在安全漏洞。攻击者可利用该漏洞读取数据库中的任意数据。以下产品及版本受到影响:OpenNMS Horizon 25.2.1之前版本;Meridian 2019 2019.1.4之前版本,Meridian 2018 2018.1.16之前版本,Meridian 20
CVSS Information
N/A
Vulnerability Type
N/A