1 results (0.003 seconds)
CVSS: 9.0EPSS: 0%CPEs: 5EXPL: 1
CVE-2017-11509
https://notcve.org/view.php?id=CVE-2017-11509
An authenticated remote attacker can execute arbitrary code in Firebird SQL Server versions 2.5.7 and 3.0.2 by executing a malformed SQL statement. Un atacante remoto autenticado puede ejecutar código arbitrario en Firebird SQL Server, versiones 2.5.7 y 3.0.2, ejecutando una instrucción SQL mal formada. • https://lists.debian.org/debian-lts-announce/2018/05/msg00005.html https://lists.debian.org/debian-lts-announce/2020/02/msg00036.html https://lists.debian.org/debian-lts-announce/2021/11/msg00018.html https://www.tenable.com/security/research/tra-2017-36 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •