SQL Injection Vulnerability in Capsule8 Console (Versions 4.6.0 - 4.9.1) Allows Unauthorized Administrative Access

CVE-2022-0366 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

An authenticated and authorized agent user could potentially gain administrative access via an SQLi vulnerability to Capsule8 Console between versions 4.6.0 and 4.9.1.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.