CVE-2020-24623
N/A
N/A
Summary
A potential security vulnerability has been identified in Hewlett Packard Enterprise Universal API Framework. The vulnerability could be remotely exploited to allow SQL injection in HPE Universal API Framework for VMware Esxi v2.5.2 and HPE Universal API Framework for Microsoft Hyper-V (VHD).
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | HPE Universal API Framework for VMware ESXi (OVA) in HPE Universal API Framework for VMware Esxi v2.5.2 and HPE Universal API Framework for Microsoft Hyper-V (VHD) | Prior to v2.5.2 | affected |
Weaknesses
- remote sql injection
ADP Enrichment
CVE Program Container
Additional References
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04024en_us
- https://www.zerodayinitiative.com/advisories/ZDI-20-1208/
References
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbgn04024en_us
- https://www.zerodayinitiative.com/advisories/ZDI-20-1208/
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.