CVE-2015-1605

CVSS 7.5 - HIGH

Description

Multiple SQL injection vulnerabilities in Dell ScriptLogic Asset Manager (aka Quest Workspace Asset Manager) before 9.5 allow remote attackers to execute arbitrary SQL commands via unspecified vectors to (1) GetClientPackage.aspx or (2) GetProcessedPackage.aspx.

Affected Products

1

Vendor	Product	Version
dell	asset_manager	`All versions`

References

http://www.securityfocus.com/bid/72697

http://www.zerodayinitiative.com/advisories/ZDI-15...

http://www.zerodayinitiative.com/advisories/ZDI-15...

http://www.securityfocus.com/bid/72697

http://www.zerodayinitiative.com/advisories/ZDI-15...

http://www.zerodayinitiative.com/advisories/ZDI-15...

Weakness Types

CWE-89

CVE Information

CVE ID:: CVE-2015-1605
Published:: 2015-02-24
Modified:: 2026-05-06
CVSS Score:: 7.5
Severity:: HIGH
Vector:: AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected Vendors

dell

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL