CVE-2021-36328
Severity CVSS v4.0:
Pending analysis
Type:
CWE-89
SQL Injection
Publication date:
30/11/2021
Last modified:
01/12/2021
Description
Dell EMC Streaming Data Platform versions before 1.3 contain a SQL Injection Vulnerability. A remote malicious user may potentially exploit this vulnerability to execute SQL commands to perform unauthorized actions and retrieve sensitive information from the database.
Impact
Base Score 3.x
8.80
Severity 3.x
HIGH
Base Score 2.0
6.50
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:dell:emc_streaming_data_platform:*:*:*:*:*:*:*:* | 1.3 (excluding) |
To consult the complete list of CPE names with products and versions, see this page