Lucene search
HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-7232
cve-2013-7232
sql injection
esri arcgis
remote attackers
arbitrary sql commands
nvd
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
47.0%
SQL injection vulnerability in ESRI ArcGIS for Server through 10.2 allows remote attackers to execute arbitrary SQL commands via unspecified input to the map or feature service.
Affected configurations
Node
esriarcgisRange≤10.2
OResriarcgisMatch10.1
| CPE | Name | Operator | Version |
|---|---|---|---|
| esri:arcgis | esri arcgis | le | 10.2 |
| esri:arcgis | esri arcgis | eq | 10.1 |
Related
prion
prion
Sql injection
2013-12-30 04:53:00
nvd
nvd
CVE-2013-7232
2013-12-30 04:53:07
cvelist
cvelist
CVE-2013-7232
2022-10-03 16:14:52
seebug
seebug
ESRI ArcGIS未明SQL注入漏洞
2014-01-02 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
47.0%
Related for CVE-2013-7232