SQL Injection Vulnerability in IBM Marketing Platform by IBM
CVE-2013-6311

Currently unrated

Key Information:

Vendor: IBM
Status: Marketing Platform
Vendor: CVE Published:; 28 June 2014

What is CVE-2013-6311?

An SQL injection vulnerability has been identified in IBM Marketing Platform 9.1 prior to Fix Pack 2. This security flaw permits remote authenticated users to execute arbitrary SQL commands, potentially allowing attackers to manipulate the database and access sensitive information through unforeseen vectors. Users are encouraged to apply the latest updates to mitigate this security risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/88561

vdb-entryx_refsource_XF

http://www-01.ibm.com/support/docview.wss?uid=swg21676688

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 28, 2014
Vulnerability Reserved
Oct 31, 2013