CVE-2014-7289 in Broadcom and Symantec Products
Published on January 21, 2015

SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request.

NVD

Products Associated with CVE-2014-7289

stack.watch emails you whenever new vulnerabilities are published in Broadcom Symantec Critical System Protection or Symantec Data Center Security. Just hit a watch button to start following.

Broadcom Symantec Critical System Protection

Symantec Data Center Security

Exploit Probability

EPSS

0.88%

Percentile

75.08%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2014-7289 in Broadcom and Symantec ProductsPublished on January 21, 2015

Products Associated with CVE-2014-7289

Exploit Probability

CVE-2014-7289 in Broadcom and Symantec Products
Published on January 21, 2015