5 matches found
Mageia: Security Advisory (MGASA-2015-0001)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : openvas-manager (openSUSE-2015-123)
openvas-manager was updated to fix one security issue. This security issue was fixed : - CVE-2014-9220: SQL injection vulnerability bnc908427 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...
MGASA-2015-0001 Updated openvas-manager packages fix security vulnerability
Updated openvas-manager packages fixes security vulnerability: It has been identified that OpenVAS Manager before 4.0.6 is vulnerable to sql injections due to a improper handling of the timezone parameter in modifyschedule OMP command. It has been identified that this vulnerability may allow...
CVE-2014-9220
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modifyschedule OMP command...
CVE-2014-9220
CVE-2014-9220 is an SQL injection vulnerability in OpenVAS Manager prior to 4.0.6 and in 5.x prior to 5.0.7. The issue allows remote attackers to execute arbitrary SQL via the timezone parameter of a modify_schedule OMP command. The vulnerability is rated CVSS v2 base score 7.5 (HIGH). Affected v...