SQL injection vulnerability in the authentication form in the integrated web server in the Data Management Server (DMS) before 1.4.3 in Samsung Integrated Management System allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
oryginał ENAV:N/AC:L/Au:N/C:P/I:P/A:PSamsung Data Management Server
APPSamsung1.3.31.4.1≤ 1.4.2
Powiązane podatności
Deserialization of Untrusted Data in Samsung DMS(Data Management Server) allows attackers to execute arbitrary...
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in Samsung DMS(Data Management ...
An execution after redirect in Samsung DMS(Data Management Server) allows attackers to execute limited functio...
Absolute Path Traversal in Samsung DMS(Data Management Server) allows authenticated attacker (Administrator) t...
An 'Arbitrary File Creation' in Samsung DMS(Data Management Server) allows attackers to create arbitrary files...