VYPR
Unrated severityNVD Advisory· Published Jul 18, 2023· Updated Oct 21, 2024

An SQL injection affects BigFix WebUI API

CVE-2023-28019

Description

Insufficient validation in Bigfix WebUI API App site version < 14 allows an authenticated WebUI user to issue SQL queries via an unparameterized SQL query.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.