SQL Injection Vulnerability in Symantec Security Information Manager Management Console
CVE-2013-1613

Currently unrated

Key Information:

Vendor: Symantec
Status: Security Information Manager; Security Information Manager Appliance
Vendor: CVE Published:; 8 July 2013

Summary

This vulnerability in the management console of Symantec Security Information Manager allows remote authenticated users to execute arbitrary SQL commands through exploited vectors. This can lead to unauthorized access and manipulation of the database, posing a significant security risk for users dependent on this appliance.

References

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/60796

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Jul 8, 2013