Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-5050
HistoryJan 04, 2012 - 7:55 p.m.

CVE-2011-5050

2012-01-0419:55:02
CWE-89
[email protected]
web.nvd.nist.gov
1

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.001

Percentile

28.6%

JSON

SQL injection vulnerability in corporate/Controller in Elitecore Technologies Cyberoam UTM before 10.01.2 build 059 allows remote authenticated administrators to execute arbitrary SQL commands via the tableid parameter. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd
Node
elitecorecyberoam_unified_threat_managementRange10.01.0build0739
OR
elitecorecyberoam_unified_threat_managementMatch10.00build0309
OR
elitecorecyberoam_unified_threat_managementMatch10.01build0667
OR
elitecorecyberoam_unified_threat_managementMatchcr300i10
OR
elitecorecyberoam_unified_threat_managementMatchcr500i10
VendorProductVersionCPE
elitecorecyberoam_unified_threat_management*cpe:2.3:h:elitecore:cyberoam_unified_threat_management:*:build0739:*:*:*:*:*:*
elitecorecyberoam_unified_threat_management10.00cpe:2.3:h:elitecore:cyberoam_unified_threat_management:10.00:build0309:*:*:*:*:*:*
elitecorecyberoam_unified_threat_management10.01cpe:2.3:h:elitecore:cyberoam_unified_threat_management:10.01:build0667:*:*:*:*:*:*
elitecorecyberoam_unified_threat_managementcr300icpe:2.3:h:elitecore:cyberoam_unified_threat_management:cr300i:10:*:*:*:*:*:*
elitecorecyberoam_unified_threat_managementcr500icpe:2.3:h:elitecore:cyberoam_unified_threat_management:cr500i:10:*:*:*:*:*:*

Related

prion 1
cvelist 1
exploitdb 1
cve 1
prion
prion
Sql injection
2012-01-04 19:55:00
cvelist
cvelist
CVE-2011-5050
2012-01-04 19:00:00
exploitdb
exploitdb
Cyberoam UTM 10 - 'tableid' SQL Injection
2011-12-20 00:00:00
cve
cve
CVE-2011-5050
2012-01-04 19:55:02

CVSS2

6

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:S/C:P/I:P/A:P

AI Score

7.9

Confidence

Low

EPSS

0.001

Percentile

28.6%

JSON
Related for NVD:CVE-2011-5050
prion1cvelist1exploitdb1cve1