CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11494

SQL injection vulnerability in SOL.Connect ISET-mpp meter 1.2.4.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter in a login action.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

http://www.securityfocus.com/archive/1/540946/100/0/threaded
http://www.securityfocus.com/bid/100067
https://www.exploit-db.com/exploits/42408/
http://www.securityfocus.com/archive/1/540946/100/0/threaded
http://www.securityfocus.com/bid/100067
https://www.exploit-db.com/exploits/42408/

Products affected by CVE-2017-11494

Sol-Connect » Sol.connect Iset-Mpp Meter » Version: N/A

cpe:2.3:h:sol-connect:sol.connect_iset-mpp_meter:-
Sol-Connect » Sol.connect Iset-Mpp Meter Firmware » Version: 1.2.4.2

cpe:2.3:o:sol-connect:sol.connect_iset-mpp_meter_firmware:1.2.4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11494

Products

Pricing

Contact Us