SQL Injection Vulnerability in IBM InfoSphere Master Data Management

SQL Injection Vulnerability in IBM InfoSphere Master Data Management

CVE-2014-0966 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in the GDS component in IBM InfoSphere Master Data Management - Collaborative Edition 10.x and 11.x before 11.0-FP5 and InfoSphere Master Data Management Server for Product Information Management 9.x through 11.x before 11.3-IF2 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Learn more about our Cis Benchmark Audit For Ibm I.