Security Vulnerabilities, CVEs, Published In 2011 (Sql injection) CVSS score >= 9
CVE-2011-1653
Public exploit
Multiple SQL injection vulnerabilities in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the (1) UnAssignFunctionalRoles, (2) UnassignAdminRoles, (3) DeleteFilter, (4) NonAssignedUserList, (5) DeleteReportLayout, (6) DeleteReports, and (7) RegenerateReport stored procedures.
Max CVSS
10.0
EPSS Score
97.19%
Published
2011-04-18
Updated
2021-04-12
1 vulnerabilities found