1 results (0.001 seconds)
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-7107
https://notcve.org/view.php?id=CVE-2018-7107
A potential security vulnerability has been identified in HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 and v3.3.1. The vulnerability could be remotely exploited to allow local SQL injection and elevation of privilege. Se ha identificado una potencial vulnerabilidad de seguridad en HPE Device Entitlement Gateway (DEG) v3.2.4, v3.3 y v3.3.1. La vulnerabilidad se podría explotar de forma remota para permitir una inyección SQL local y la elevación de privilegios. • https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn03889en_us • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •