Description
IBM Datacap Taskmaster Capture (IBM Datacap Navigator 9.1.7) is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 191045.
CVSS breakdown
CVSS 3.0
Availability
Low
Attack Complexity
Low
Scope
Unchanged
Privileges Required
Low
Confidentiality
Low
Attack Vector
Network
Integrity
Low
User Interaction
None
E
Unchanged
RC
Changed
RL
O
Affected products
- ibm / datacap_navigator9.1.7 – 9.1.7