Lucene search
HistoryOct 03, 2022 - 4:15 p.m.
CVE-2011-4801
cve-2011-4801
sql injection
authenex
asas server
web management control
security vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
50.8%
SQL injection vulnerability in akeyActivationLogin.do in Authenex Web Management Control in Authenex Strong Authentication System (ASAS) Server 3.1.0.2 and 3.1.0.3 allows remote attackers to execute arbitrary SQL commands via the username parameter.
Affected configurations
Node
authenexauthenex_strong_authentication_system_serverMatch3.1.0.2
ORauthenexauthenex_strong_authentication_system_serverMatch3.1.0.3
Related
prion
prion
Sql injection
2011-12-14 00:55:00
openvas
openvas
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
2011-09-23 00:00:00
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
2011-09-23 00:00:00
nvd
nvd
CVE-2011-4801
2011-12-14 00:55:02
cvelist
cvelist
CVE-2011-4801
2022-10-03 16:15:13
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
50.8%
Related for CVE-2011-4801