ГлавнаяУязвимости → CVE-2024-9134
8.3высокая

CVE-2024-9134

Описание

Multiple SQL Injection vulnerabilities exist in the reporting application. A user with advanced report application access rights can exploit the SQL injection, allowing them to execute commands on the underlying operating system with elevated privileges.

Затрагиваемое ПО
Arista Ng firewall
CVSS
Балл8.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L
Источники
https://www.arista.com/en/support/advisories-notices/security-advisory/20454-security-advisory-0105