CVE-2019-18229

Summary

Advantech WISE-PaaS/RMM, Versions 3.3.29 and prior. Lack of sanitization of user-supplied input cause SQL injection vulnerabilities. An attacker can leverage these vulnerabilities to disclose information.

Affected Software

VendorProductVersion RangeStatus
n/aAdvantech WISE-PaaS/RMMVersions 3.3.29 and prioraffected

Weaknesses

  • CWE-89: IMPROPER NEUTRALIZATION OF SPECIAL ELEMENTS USED IN AN SQL COMMAND ('SQL INJECTION') CWE-89

ADP Enrichment

CVE Program Container

Additional References

References