Remote Access to Deleted Scripts Vulnerability in McAfee Database Security (DBSec)

Remote Access to Deleted Scripts Vulnerability in McAfee Database Security (DBSec)

CVE-2021-31831 · MEDIUM Severity

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows a remote authenticated attacker to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was only available through the REST API.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.