- Description
- IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.
- Source
- psirt@us.ibm.com
- NVD status
- Received
CVSS 3.1
- Type
- Primary
- Base score
- 7.3
- Impact score
- 3.4
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
- Severity
- HIGH
- psirt@us.ibm.com
- CWE-89
- Hype score
- Not currently trending
There is a new vulnerability with elevated criticality in IBM Engineering Lifecycle Optimization Publishing (CVE-2024-41767) https://t.co/hgIeMhKrhu
@vuldb
4 Jan 2025
86 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-41767 Critical SQL Injection Vulnerability in IBM Engineering Lifecycle Optimization IBM Engineering Lifecycle Optimization - Publishing versions 7.0.2 and 7.0.3 have an SQL injection vulnerability. A re... https://t.co/2A5bhjXw6a
@VulmonFeeds
4 Jan 2025
46 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
CVE-2024-41767 IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, whi… https://t.co/DfGTf3qXBN
@CVEnew
4 Jan 2025
463 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes