SQL Injection Vulnerability in IBM Security SiteProtector System
CVE-2015-0161

Currently unrated

Key Information:

Vendor: IBM
Status: Security Siteprotector System
Vendor: CVE Published:; 25 May 2015

Summary

An SQL injection vulnerability exists in IBM Security SiteProtector System versions prior to 3.0.0.7, 3.1.0.4, and 3.1.1.2, enabling authenticated remote users to execute arbitrary SQL commands through unspecified entry points. This flaw could lead to unauthorized data access and manipulation, posing a significant security risk for affected systems.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21699470

x_refsource_CONFIRM

Timeline

Vulnerability published
May 25, 2015
Vulnerability Reserved
Nov 18, 2014