CVE-2020-7500

Summary

A CWE-89:Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could cause arbitrary code to be executed when a malicious command is entered.

Affected Software

VendorProductVersion RangeStatus
n/aU.motion Servers and Touch Panels (affected versions listed in the security notification)U.motion Servers and Touch Panels (affected versions listed in the security notification)affected

Weaknesses

  • CWE-89: CWE-89:Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CVE Program Container

Additional References

References