CVE-2017-7952
NONE EPSS 70.0%
Published May 16, 20179y ago ยท Modified Jun 17, 20262w ago
Published May 16, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
INFOR EAM V11.0 Build 201410 has SQL injection via search fields, related to the filtervalue parameter.
Threat Intelligence
EPSS Exploit Probability
70.0% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available
Weaknesses 1
CWE-89 SQL Injection Injection
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| infor | enterprise_asset_management | 11.0_build_201410 | any |
References 2
- seclists.org http://seclists.org/fulldisclosure/2017/May/55
- exploit-db.com https://www.exploit-db.com/exploits/42028/
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.