Lucene search
K

4 matches found

Check Point Advisories
Check Point Advisories
added 2019/02/13 12:0 a.m.2 views

Quest NetVault Backup NVBUEventHistory SQL Injection (CVE-2017-17412) - Ver2

A remote code execution vulnerability exists in Quest NetVault Backup. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

7.5CVSS5.1AI score0.03933EPSS
Exploits0
Check Point Advisories
Check Point Advisories
added 2018/05/02 12:0 a.m.9 views

Quest NetVault Backup NVBUEventHistory Get Method SQL Injection (CVE-2017-17412)

An SQL injection vulnerability exists in the Server Process Manager Service of Quest NetVault Backup. The vulnerability is due to improper validation of user-supplied input on JSON-RPC requests invoking the Get method of the NVBUEventHistory class...

7.5CVSS2.5AI score0.03933EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2018/02/08 6:29 p.m.4 views

CVE-2017-17412

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of GET method requests. The issue results from the lack o...

9.8CVSS6.6AI score0.03933EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2018/02/08 6:0 p.m.51 views

CVE-2017-17412

The CVE-2017-17412 issue affects Quest NetVault Backup (version 11.3.0.12). It is an SQL injection in the NVBUEventHistory Get method/JSON-RPC Get path caused by improper validation of user-supplied input used to construct SQL queries, enabling remote code execution in the database context. Explo...

9.8CVSS9.7AI score0.03933EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder