Security Advisory

CVE-2022-1258

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-14 13:50:12

Last updated 2024-08-02 23:55:24

Assigner trellix

State PUBLISHED

Description

A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server.

← Browse all CVEs View on cve.org ↗