CVE-2019-16999

Publication date

2019-09-30 12:35:39

Family

mitre

State

PUBLISHED

Description

CloudBoot through 2019-03-08 allows SQL Injection via a crafted Status field in JSON data to the api/osinstall/v1/device/getNumByStatus URI.