N/A

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers (who must have admin credentials) to submit arbitrary SQL commands on the back-end database to create, read, update, or delete any sensitive data stored in the database.

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

N/A

Veritas Technologies Infoscale Operations Manager SQL注入漏洞

Veritas Technologies Infoscale Operations Manager是美国Veritas Technologies公司的一套用于对整个InfoScale部署进行管理的软件。该软件提供多集群管理、定制接口和集中式审计记录等功能。 Veritas Technologies Infoscale Operations Manager 7.4.2.800 之前版本、8.x版本至8.0.410之前版本存在SQL注入漏洞，该漏洞源于应用程序的某些区域容易受到 SQL 注入攻击，攻击者利用该

N/A

N/A