Lucene search
China National Vulnerability DatabaseCNVD-2023-41889HistoryMay 23, 2023 - 12:00 a.m.
IBM InfoSphere Information Server SQL Injection Vulnerability (CNVD-2023-41889)
2023-05-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
ibm
infosphere
sql injection
vulnerability
data integration
validation
security
exploit
database
0.001 Low
EPSS
Percentile
36.1%
IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines (IBM). The platform can be used to integrate data information obtained from various sources. An SQL injection vulnerability exists in IBM InfoSphere Information Server version 11.7, which stems from the application’s lack of validation of externally entered SQL statements. An attacker could exploit this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ibm infosphere information server | eq | 11.7 |
Related
cvelist
cvelist
CVE-2022-47984 IBM InfoSphere Information Server SQL injection
2023-05-19 15:56:37
cve
cve
CVE-2022-47984
2023-05-19 16:15:10
ibm
ibm
prion
prion
Sql injection
2023-05-19 16:15:00
nvd
nvd
CVE-2022-47984
2023-05-19 16:15:10