Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-32569

An issue was discovered in Veritas InfoScale Operations Manager (VIOM) before 7.4.2.800 and 8.x before 8.0.410. The InfoScale VIOM web application is vulnerable to SQL Injection in some of the areas of the application. This allows attackers (who must have admin credentials) to submit arbitrary SQL commands on the back-end database to create, read, update, or delete any sensitive data stored in the database.

Published

2023-05-10T05:15:12.103

Last Modified

2025-01-28T16:15:36.150

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Primary
CWE-89
Type: Secondary
CWE-89

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	veritas	infoscale_operations_manager	< 7.4.2.800	Yes
Application	veritas	infoscale_operations_manager	< 8.0.410	Yes

References

https://www.veritas.com/content/support/en_US/security/VTS23-007 Vendor Advisory ([email protected])
https://www.veritas.com/content/support/en_US/security/VTS23-007 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)