CVE-2007-5084

CWE-89SQL Injection3 documents3 sources
Severity
6.8MEDIUM
EPSS
1.6%
top 18.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Broadcom Brightstor Hierarchical Storage Manager
Timeline
PublishedOct 1
Latest updateMay 1

Description

Multiple SQL injection vulnerabilities in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary SQL commands via CsAgent service commands with opcodes (1) 0x07, (2) 0x08, (3) 0x09, (4) 0x1E, (5) 0x32, (6) 0x36, (7) 0x40, and possibly others.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages1 packages

Patches

Patch: supportconnectw.ca.comPatch: www.ca.comPatch: supportconnectw.ca.com

🔴Vulnerability Details

2
GHSA
GHSA-v5gg-g8c2-9jp8: Multiple SQL injection vulnerabilities in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r112022-05-01
CVEList
CVE-2007-5084: Multiple SQL injection vulnerabilities in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r112007-10-01
CVE-2007-5084 (MEDIUM CVSS 6.8) | Multiple SQL injection vulnerabilit | cvebase.io