SQL Injection Vulnerability in IBM Atlas Suite Products
CVE-2013-6321

Currently unrated

Key Information:

Vendor: IBM
Status: Global Retention Policy And Schedule Management; Atlas Suite; Disposal And Governance Management For It; Atlas Ediscovery Process Management
Vendor: CVE Published:; 10 January 2014

Summary

An SQL injection vulnerability exists in the IBM Atlas Suite, affecting multiple components such as eDiscovery Process Management, Disposal and Governance Management, and Global Retention Policy Management. This flaw allows remote attackers to execute arbitrary SQL commands via unspecified vectors, potentially compromising sensitive data and the integrity of the affected systems.

References

http://osvdb.org/101856

vdb-entryx_refsource_OSVDB

http://www.ibm.com/connections/blogs/PSIRT/entry/security...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/64749

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 10, 2014
Vulnerability Reserved
Oct 31, 2013