CVE-2012-1815

EUVD-2012-1825
SQL injection vulnerability in Emerson DeltaV and DeltaV Workstations 9.3.1, 10.3.1, 11.3, and 11.3.1 and DeltaV ProEssentials Scientific Graph 5.0.0.6 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
Affected Products (NVD)
VendorProductVersion
emersondeltav
9.3.1
emersondeltav
10.3.1
emersondeltav
11.3
emersondeltav
11.3.1
emersondeltav_proessentials_scientific_graph
5.0.0.6
emersondeltav_workstation
9.3.1
emersondeltav_workstation
10.3.1
emersondeltav_workstation
11.3
emersondeltav_workstation
11.3.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/82011
http://secunia.com/advisories/49210
http://www.securityfocus.com/bid/53591
http://www.us-cert.gov/control_systems/pdf/ICSA-12-138-01.pdf
http://osvdb.org/82011
http://secunia.com/advisories/49210
http://www.securityfocus.com/bid/53591
http://www.us-cert.gov/control_systems/pdf/ICSA-12-138-01.pdf