Unrated severityNVD Advisory· Published Dec 3, 2014· Updated May 6, 2026
CVE-2014-9220
CVE-2014-9220
Description
SQL injection vulnerability in OpenVAS Manager before 4.0.6 and 5.x before 5.0.7 allows remote attackers to execute arbitrary SQL commands via the timezone parameter in a modify_schedule OMP command.
Affected products
23cpe:2.3:a:openvas:openvas_manager:5.0.6:*:*:*:*:*:*:*+ 20 more
- cpe:2.3:a:openvas:openvas_manager:5.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:*:*:*:*:*:*:*:*range: <=4.0.5
- cpe:2.3:a:openvas:openvas_manager:5.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta1:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta10:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta11:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta12:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta13:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta2:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta3:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta4:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta5:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta6:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta7:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta8:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.0:beta9:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:openvas:openvas_manager:5.0.5:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.openvas.org/OVSA20141128.htmlnvdPatchVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-January/147753.htmlnvdThird Party Advisory
- lists.opensuse.org/opensuse-updates/2015-02/msg00039.htmlnvdThird Party Advisory
- openwall.com/lists/oss-security/2014/11/30/2nvdMailing ListThird Party Advisory
- www.alienvault.com/forums/discussion/4415/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.