2 matches found
Quest NetVault Backup NVBUBackup Count Method SQL Injection (CVE-2017-17652)
An SQL injection vulnerability exists in the Server Process Manager Service of Quest NetVault Backup. The vulnerability is due to improper validation of user-supplied input on JSON-RPC requests invoking the Count method of the NVBUBackup class...
CVE-2017-17652
CVE-2017-17652 affects Quest NetVault Backup, specifically the Server Process Manager Service’s NVBUBackup Count method. The root cause is improper validation of user-supplied input used to build SQL queries, enabling an SQL injection that can lead to remote code execution in the database context...