Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-20110
HistoryMay 18, 2023 - 3:15 a.m.

Sql injection

2023-05-1803:15:00
PRIOn knowledge base
www.prio-n.com
6
cisco smart software manager
sql injection
web-based management interface
authenticated attacker
user input validation
sensitive data
nvd

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON

A vulnerability in the web-based management interface of Cisco Smart Software Manager On-Prem (SSM On-Prem) could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability exists because the web-based management interface inadequately validates user input. An attacker could exploit this vulnerability by authenticating to the application as a low-privileged user and sending crafted SQL queries to an affected system. A successful exploit could allow the attacker to read sensitive data on the underlying database.

Related

githubexploit 1
cve 1
cvelist 1
cisco 1
nvd 1
githubexploit
githubexploit
Exploit for SQL Injection in Cisco Smart Software Manager On-Prem
2023-07-16 10:53:51
cve
cve
CVE-2023-20110
2023-05-18 03:15:09
cvelist
cvelist
CVE-2023-20110 Cisco Smart Software Manager On-Prem SQL Injection Vulnerability
2023-05-18 00:00:00
cisco
cisco
Cisco Smart Software Manager On-Prem SQL Injection Vulnerability
2023-05-17 16:00:00
nvd
nvd
CVE-2023-20110
2023-05-18 03:15:09

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.6%

JSON
Related for PRION:CVE-2023-20110
githubexploit1cve1cvelist1cisco1nvd1