Security Advisory

CVE-2021-32099

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-05-07 03:51:15

Last updated 2024-08-03 23:17:28

Assigner mitre

State PUBLISHED

Description

A SQL injection vulnerability in the pandora_console component of Artica Pandora FMS 742 allows an unauthenticated attacker to upgrade his unprivileged session via the /include/chart_generator.php session_id parameter, leading to a login bypass.

← Browse all CVEs View on cve.org ↗