Unauthenticated SQL Injection Vulnerability in GMS Webservice Module

Unauthenticated SQL Injection Vulnerability in GMS Webservice Module

CVE-2019-7478 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

A vulnerability in GMS allow unauthenticated user to SQL injection in Webservice module. This vulnerability affected GMS versions GMS 8.4, 8.5, 8.6, 8.7, 9.0 and 9.1.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.