SQL Injection Vulnerability in IBM Tivoli Remote Control Server Component
CVE-2013-3033

Currently unrated

Key Information:

Vendor: IBM
Status: Tivoli Remote Control
Vendor: CVE Published:; 29 July 2013

What is CVE-2013-3033?

An SQL injection vulnerability exists in the server component of IBM Tivoli Remote Control 5.1.2 prior to version 5.1.2-TIV-TRC512-IF0015. This flaw allows remote authenticated users to exploit unvalidated inputs and execute arbitrary SQL commands, potentially compromising the database and the integrity of the application. Effective measures are required to mitigate risks associated with this vulnerability, including applying the necessary updates and implementing proper input validation.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21643363

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/84645

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 29, 2013
Vulnerability Reserved
Apr 12, 2013