QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2014-7289

Back to search

CVE-2014-7289

Published: Jan 21, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request.

VendorProductVersions

n/a

n/a

affected
n/a

References

72092
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now