SQL injection vulnerability in CA Release Automation (formerly iTKO LISA Release Automation) before 4.7.1 b448 allows remote authenticated users to execute arbitrary SQL commands via a crafted query.
References
Configurations
History
12 Apr 2021, 14:14
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:broadcom:release_automation:*:*:*:*:*:*:*:* |
Information
Published : 2014-12-16 23:59
Updated : 2023-12-10 11:31
NVD link : CVE-2014-8248
Mitre link : CVE-2014-8248
CVE.ORG link : CVE-2014-8248
JSON object : View
Products Affected
broadcom
- release_automation
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')