CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-4197

Multiple SQL injection vulnerabilities in Bank Soft Systems (BSS) RBS BS-Client 3.17.9 allow remote attackers to execute arbitrary SQL commands via the (1) CARDS or (2) XACTION parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.3%

CVSS Severity

CVSS v2 Score 7.5

References

http://secunia.com/advisories/59319
https://www3.trustwave.com/spiderlabs/advisories/TWSL2014-009.txt
http://secunia.com/advisories/59319
https://www3.trustwave.com/spiderlabs/advisories/TWSL2014-009.txt

Products affected by CVE-2014-4197

Bssys » Rbs Bs-Client » Version: 3.17.9

cpe:2.3:a:bssys:rbs_bs-client:3.17.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-4197

Products

Pricing

Contact Us