Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Dell OpenManage Enterprise, version(s) OME 4.1 and prior, contain(s) an Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
Dell OpenManage Enterprise SQL注入漏洞
Vulnerability Description
Dell OpenManage Enterprise是美国戴尔(Dell)公司的一款用于IT基础架构管理的易于使用的一对多系统管理控制台。 该软件支持一个控制台中经济高效地为 Dell EMC PowerEdge 服务器提供全面的生命周期管理。 Dell OpenManage Enterprise 4.2.0之前版本存在SQL注入漏洞,该漏洞源于SQL命令中使用的特殊元素不当中和,具有远程访问权限的低权限攻击者可能会利用此漏洞导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A