Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
SQLi in OpenNMS Horizon and Meridian
Vulnerability Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in OpenNMS Horizon and Meridian applications allows SQL Injection. Users should upgrade to Meridian 2024.2.6 or newer, or Horizon 33.16 or newer. Meridian and Horizon installation instructions state that they are intended for installation within an organization's private networks and should not be directly accessible from the Internet.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
OpenNMS Horizon 安全漏洞
Vulnerability Description
OpenNMS Horizon是OpenNMS公司的一种开源解决方案,可帮助您可视化和监控本地和远程网络上的所有内容。 OpenNMS Horizon存在安全漏洞,该漏洞源于SQL命令中特殊元素中和不当,可能导致SQL注入。
CVSS Information
N/A
Vulnerability Type
N/A