6.5
CVE-2007-1882
- EPSS 6.1%
- Veröffentlicht 06.04.2007 01:19:00
- Zuletzt bearbeitet 16.06.2026 22:38:29
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
qcbin/servlet/tdservlet/TDAPI_GeneralWebTreatment in HP Mercury Quality Center 9.0 build 9.1.0.4352 allows remote authenticated users to execute arbitrary SQL commands via the RunQuery method.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Hp ≫ Mercury Quality Center Version9.0 Updatebuild_9.1.0.4352
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.1% | 0.925 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 8 | 6.4 |
AV:N/AC:L/Au:S/C:P/I:P/A:P
|
http://lists.grok.org.uk/pipermail/full-disclosure/2007-April/053406.html
http://osvdb.org/34630
http://secunia.com/advisories/24730
http://securityreason.com/securityalert/2527
http://www.securitytracker.com/id?1017842
http://www.vupen.com/english/advisories/2007/1246
https://exchange.xforce.ibmcloud.com/vulnerabilities/33385