Authentication-Required SQL Injection Vulnerabilities in OCS Inventory 2.4.1 Search Engine

Authentication-Required SQL Injection Vulnerabilities in OCS Inventory 2.4.1 Search Engine

CVE-2018-12482 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

OCS Inventory 2.4.1 contains multiple SQL injections in the search engine. Authentication is needed in order to exploit the issues.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.