SQL Injection Vulnerability in ArrayOS Allows Remote Code Execution

SQL Injection Vulnerability in ArrayOS Allows Remote Code Execution

CVE-2017-6557 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

SQL injection vulnerability in ArrayOS before AG 9.4.0.135, when the portal bookmark function is enabled, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Learn more about our User Device Pen Test.