Lucene search

K
cve[email protected]CVE-2009-2978
HistoryAug 27, 2009 - 6:30 p.m.

CVE-2009-2978

2009-08-2718:30:00
CWE-89
web.nvd.nist.gov
25
cve-2009-2978
sql injection
vulnerability
sugarcrm
remote attackers
arbitrary sql commands
nvd

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.4%

SQL injection vulnerability in SugarCRM 4.5.1o and earlier, 5.0.0k and earlier, and 5.2.0g and earlier, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Affected configurations

NVD
Node
sugarcrmsugarcrmRange4.5.1o
OR
sugarcrmsugarcrmRange5.0.0ksugar_community_edition
OR
sugarcrmsugarcrmRange5.2.0g
OR
sugarcrmsugarcrmMatch1.0
OR
sugarcrmsugarcrmMatch1.0f
OR
sugarcrmsugarcrmMatch1.0g
OR
sugarcrmsugarcrmMatch1.1
OR
sugarcrmsugarcrmMatch1.1a
OR
sugarcrmsugarcrmMatch1.1b
OR
sugarcrmsugarcrmMatch1.1c
OR
sugarcrmsugarcrmMatch1.1d
OR
sugarcrmsugarcrmMatch1.1e
OR
sugarcrmsugarcrmMatch1.1f
OR
sugarcrmsugarcrmMatch1.5d
OR
sugarcrmsugarcrmMatch2.0.1
OR
sugarcrmsugarcrmMatch2.0.1a
OR
sugarcrmsugarcrmMatch2.0.1c
OR
sugarcrmsugarcrmMatch3.0.1
OR
sugarcrmsugarcrmMatch3.5
OR
sugarcrmsugarcrmMatch3.5.1
OR
sugarcrmsugarcrmMatch4.0
OR
sugarcrmsugarcrmMatch4.0.1
OR
sugarcrmsugarcrmMatch4.1
OR
sugarcrmsugarcrmMatch4.2
OR
sugarcrmsugarcrmMatch4.2.1
OR
sugarcrmsugarcrmMatch4.5.0
OR
sugarcrmsugarcrmMatch4.5.0f
OR
sugarcrmsugarcrmMatch4.5.1
OR
sugarcrmsugarcrmMatch5.0.0sugar_community_edition
OR
sugarcrmsugarcrmMatch5.0.0hsugar_community_edition
OR
sugarcrmsugarcrmMatch5.2a
OR
sugarcrmsugarcrmMatch5.2c
OR
sugarcrmsugarcrmMatch5.2d
OR
sugarcrmsugarcrmMatch5.2e
OR
sugarcrmsugarcrmMatch5.2esugar_community_edition
OR
sugarcrmsugarcrmMatch5.2f

8.6 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.004 Low

EPSS

Percentile

72.4%

Related for CVE-2009-2978