CVE-2011-2467SQL Injection in Open

CWE-89SQL Injection4 documents4 sources
Severity
5.8MEDIUMNVD
EPSS
0.2%
top 60.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Likewise Open
Timeline
PublishedJul 27
Latest updateMay 17

Description

SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 5.4 through 6.1, and Likewise Enterprise 6.0, allows local users to execute arbitrary SQL commands via unspecified vectors.

CVSS vector

AV:A/AC:L/C:P/I:P/A:PExploitability: 6.5 | Impact: 6.4

Affected Packages1 packages

NVDlikewise/likewise_open5.4, 6.0, 6.1+2

🔴Vulnerability Details

2
GHSA
GHSA-h4g9-w7xj-25fp: SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 52022-05-17
CVEList
CVE-2011-2467: SQL injection vulnerability in lsassd in Lsass in the Likewise Security Authority in Likewise Open 52011-07-27

📋Vendor Advisories

1
Ubuntu
Likewise Open vulnerability2011-07-20
CVE-2011-2467 — SQL Injection in Likewise Open | cvebase