SQL Injection Vulnerabilities in Cisco Connected Grid Network Management System
CVE-2013-1163

Currently unrated

Key Information:

Vendor
Cisco
Status
Connected Grid Network Management System
Vendor
CVE Published:
1 April 2013

Summary

The Cisco Connected Grid Network Management System is vulnerable to multiple SQL injection issues in its device-management functionality. These vulnerabilities enable remote attackers to execute arbitrary SQL commands through unspecified vectors, potentially compromising the confidentiality and integrity of the database. Prompt action is advised to mitigate this risk.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.