High severity8.8NVD Advisory· Published May 5, 2017· Updated Jun 17, 2026
CVE-2017-6557
CVE-2017-6557
Description
SQL injection vulnerability in ArrayOS before AG 9.4.0.135, when the portal bookmark function is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/amaciasf/array/blob/master/ArrayOS_AG_9_4_0_135_Release_Note.pdfnvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.