CVE-2019-4481

IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 164064.
Configurations

Configuration 1

cpe:2.3:a:ibm:emptoris_spend_analysis:*:*:*:*:*:*:*:*
cpe:2.3:a:ibm:emptoris_contract_management:*:*:*:*:*:*:*:*

Information

Published : 2019-08-20 07:15

Updated : 2022-12-02 10:39


NVD link : CVE-2019-4481

Mitre link : CVE-2019-4481

Products Affected
No products.
CWE