CVE-2022-39817: SQL Injection
First published: Tue Sep 13 2022(Updated: )
In NOKIA 1350 OMS R14.2, multiple SQL Injection vulnerabilities occurs. Exploitation requires an authenticated attacker. Through the injection of arbitrary SQL statements, a potential authenticated attacker can modify query syntax and perform unauthorized (and unexpected) operations against the remote database.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| =14.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this NOKIA 1350 OMS R14.2 vulnerability?
The vulnerability ID is CVE-2022-39817.
What is the severity of CVE-2022-39817?
The severity of CVE-2022-39817 is rated as high with a severity keyword of 'high' and a severity value of 8.8.
What is the affected software of CVE-2022-39817?
The affected software of CVE-2022-39817 is NOKIA 1350 OMS R14.2.
How does CVE-2022-39817 affect NOKIA 1350 OMS R14.2?
CVE-2022-39817 causes multiple SQL Injection vulnerabilities in NOKIA 1350 OMS R14.2.
How can CVE-2022-39817 be exploited?
Exploitation of CVE-2022-39817 requires an authenticated attacker who can inject arbitrary SQL statements to modify query syntax and perform unauthorized operations against the remote system.
- collector/nvd-index
- agent/weakness
- agent/type
- agent/references
- agent/severity
- agent/author
- agent/event
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nokia