CVE-2017-10937
N/A
N/A
Summary
SQL injection vulnerability in all versions prior to V2.01.05.09 of the ZTE ZXIPTV-UCM product allows remote attackers to execute arbitrary SQL commands via the opertype parameter, resulting in the disclosure of database information.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| ZTE | ZXIPTV-UCM | All versions prior to V2.01.05.09 | affected |
Weaknesses
- SQL injection
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.