Quest NetVault Backup NVBUJobCountHistory SQL Injection (CVE-2017-17420)
Discription
An SQL injection vulnerability exists in the Server Process Manager Service of Quest NetVault Backup. The vulnerability is due to improper validation of user-supplied input on JSON-RPC requests invoking the Get method of the NVBUJobCountHistory class. A remote unauthenticated attacker could exploit this vulnerability by sending maliciously crafted requests to the target…Read More
References
Back to Main