Lucene search
China National Vulnerability DatabaseCNVD-2022-68946HistoryMay 27, 2022 - 12:00 a.m.
Nokia Broadcast Message Center SQL Injection Vulnerability (CNVD-2022-68946)
2022-05-2700:00:00
China National Vulnerability Database
www.cnvd.org.cn
19
nokia broadcast message center
sql injection
vulnerability
cnvd-2022-68946
http post parameter
database user
database name
database version
database data
EPSS
0.001
Percentile
32.8%
Nokia Broadcast Message Center is a broadcast message center for Nokia Finland to manage alerts. An SQL injection vulnerability exists in Nokia Broadcast Message Center 11.1.0 and earlier versions, which originates in /owui/block/send-receive-updates extIdentifier HTTP POST parameter is missing filtering and escaping. An attacker could use this vulnerability to obtain database user, database name and database version information, as well as potentially database data.
Related
prion
prion
Sql injection
2022-05-25 14:15:00
cvelist
cvelist
CVE-2021-35487
2022-05-25 13:41:38
nvd
nvd
CVE-2021-35487
2022-05-25 14:15:08
cve
cve
CVE-2021-35487
2022-05-25 14:15:08