CVE-2014-3326

SQL injection vulnerability in the web framework in Cisco Security Manager 4.5 and 4.6 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCup26957.

Severity	MEDIUM
CVSS	6.5
CWE	CWE-89
KEV
Published	11 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco RV Series Routers	Cisco-SA-20140724-CVE-2014-3326
Cisco Nexus Dashboard	Cisco-SA-20140724-CVE-2014-3326
Cisco Security Manager	Cisco-SA-20140724-CVE-2014-3326