SQL Injection Vulnerability in CA Network Flow Analysis (NFA) Web Application

SQL Injection Vulnerability in CA Network Flow Analysis (NFA) Web Application

CVE-2021-44050 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.