Unrated severityNVD Advisory· Published Feb 20, 2020· Updated Sep 16, 2024
CVE-2019-4752
CVE-2019-4752
Description
IBM Emptoris Spend Analysis and IBM Emptoris Strategic Supply Management Platform 10.1.0.x, 10.1.1.x, and 10.1.3.x is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 173348.
Affected products
4>= 10.1.0, <= 10.1.3+ 1 more
- (no CPE)range: >= 10.1.0, <= 10.1.3
- (no CPE)range: 10.1.0.34
>= 10.1.0, <= 10.1.3+ 1 more
- (no CPE)range: >= 10.1.0, <= 10.1.3
- (no CPE)range: 10.1.0
Patches
Vulnerability mechanics
References
3- exchange.xforce.ibmcloud.com/vulnerabilities/173348mitrevdb-entryx_refsource_XF
- www.ibm.com/support/pages/node/2948919mitrex_refsource_CONFIRM
- www.ibm.com/support/pages/node/2950269mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.