3 matches found
CVE-2017-10937
SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the disclosure of database information...
CVE-2017-10937
CVE-2017-10937 affects ZTE ZXIPTV-UCM set‑top boxes; all versions prior to 2.01.05.09 are vulnerable to a SQL injection via the opertype parameter. This allows a remote attacker to execute arbitrary SQL and disclose database information. No exploitation details are provided in the source document...
CVE-2017-10937
SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the disclosure of database information...