Lucene search
Veracode Vulnerability DatabaseVERACODE:47510HistoryJun 13, 2024 - 6:27 a.m.
SQL Injection
2024-06-1306:27:53
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
1
submarine server core
sql injection
improper neutralization
unauthorized access
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
7.5
Confidence
Low
org.apache.submarine: submarine-server-core is vulnerable to SQL Injection. The vulnerability is due to improper neutralization of special elements used in an SQL command, allowing attackers to manipulate queries and potentially gain unauthorized access to the server’s database.
Related
cve
cve
CVE-2024-36263
2024-06-12 14:15:11
cvelist
cvelist
CVE-2024-36263 Apache Submarine Server Core: SQL injection
2024-06-12 14:05:00
nvd
nvd
CVE-2024-36263
2024-06-12 14:15:11
github
github
Apache Submarine Server Core has a SQL Injection Vulnerability
2024-06-12 15:31:45
vulnrichment
vulnrichment
CVE-2024-36263 Apache Submarine Server Core: SQL injection
2024-06-12 14:05:00
osv
osv
Apache Submarine Server Core has a SQL Injection Vulnerability
2024-06-12 15:31:45
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
AI Score
7.5
Confidence
Low
Related for VERACODE:47510