CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-1000631

Battelle V2I Hub 3.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the tmx/TmxCtl/src/lib/PluginStatus.cpp and TmxControl::user_info() function, which could allow the attacker to view, add, modify or delete information in the back-end database.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.2%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/147308
https://exchange.xforce.ibmcloud.com/vulnerabilities/147308

Products affected by CVE-2018-1000631

Battelle » V2i Hub » Version: 3.0

cpe:2.3:a:battelle:v2i_hub:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1000631

Products

Pricing

Contact Us