Lucene search
HistoryDec 23, 2013 - 10:55 p.m.
CVE-2013-4461
cve-2013-4461
sql injection
cumin
web interface
red hat enterprise mrg grid 2.4
security vulnerability
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.5 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.5%
SQL injection vulnerability in the web interface for cumin in Red Hat Enterprise MRG Grid 2.4 allows remote attackers to execute arbitrary SQL commands via vectors related to the “filtering table operator.”
Affected configurations
Node
redhatenterprise_mrgMatch2.4
| CPE | Name | Operator | Version |
|---|---|---|---|
| redhat:enterprise_mrg | redhat enterprise mrg | eq | 2.4 |
Related
prion
prion
Sql injection
2013-12-23 22:55:00
cvelist
cvelist
CVE-2013-4461
2013-12-23 22:00:00
nvd
nvd
CVE-2013-4461
2013-12-23 22:55:02
redhat
redhat
(RHSA-2013:1851) Moderate: Red Hat Enterprise MRG Grid 2.4 security update
2013-12-17 00:00:00
(RHSA-2013:1852) Moderate: Red Hat Enterprise MRG Grid 2.4 security update
2013-12-17 00:00:00
nessus
nessus
RHEL 6 : MRG (RHSA-2013:1852)
2014-07-22 00:00:00
RHEL 5 : MRG (RHSA-2013:1851)
2014-07-22 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.5 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.5%
Related for CVE-2013-4461