2 matches found
CVE-2017-5810
CVE-2017-5810 is a remote SQL injection in HP Network Automation, affecting 9.1x, 9.2x, 10.0x, 10.1x and 10.2x. The issue arises in the RedirectServlet due to insufficient sanitization of certain HTTP request parameters, enabling an unauthenticated or remote attacker to inject SQL and potentially...
HPE Network Automation RedirectServlet SQL Injection (CVE-2017-5810)
A SQL injection vulnerability exists in HPE Network Automation. The vulnerability is due to insufficient sanitization of certain HTTP request parameters in RedirectServlet. A remote attacker could exploit this vulnerability by sending a maliciously crafted request to the target server...