CVE-2021-4088

CVE-2021-4088

SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with privilege escalation.

Source: CVE-2021-4088

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다