Low-Privilege SQL Injection Vulnerability Exposes Sensitive Information

Low-Privilege SQL Injection Vulnerability Exposes Sensitive Information

CVE-2022-2136 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

The affected product is vulnerable to multiple SQL injections that require low privileges for exploitation and may allow an unauthorized attacker to disclose information.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.