CVE-2021-29730: SQL Injection
First published: Fri Jul 09 2021(Updated: )
IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 201164.
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ibm Infosphere Information Server | =11.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2021-29730.
What is the severity of CVE-2021-29730?
CVE-2021-29730 has a severity rating of 8.8 (high).
What is the affected software?
IBM InfoSphere Information Server 11.7 is the affected software.
What is the impact of CVE-2021-29730?
CVE-2021-29730 allows a remote attacker to execute SQL injection attacks, potentially accessing, modifying, or deleting information from the backend database.
How can I fix CVE-2021-29730?
Apply the latest security patch or update provided by IBM to address the SQL injection vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/first-publish-date
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ibm
- canonical/ibm infosphere information server
- version/ibm infosphere information server/11.7