SQL Injection in Ibm Tivoli_provisioning_manager_express_for_software_distribution

CVE-2012-0199

Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 allow remote attackers to execute arbitrary SQL commands via (1) a SOAP message to the Printer.getPrinterAgentKey function in…

Vulnerability class: SQL Injection

EPSS: 0.004 (59.7th percentile) — read the EPSS interpretation.

Affected products

Ibm Tivoli_provisioning_manager_express_for_software_distribution — versions 4.1.1
N/a — versions n/a

Weakness classification (CWE)

CWE-89 — SQL Injection

References

psirt@us.ibm.com (x_refsource_MISC)
tpme-multiple-sql-injection(73034) (vdb-entry, x_refsource_XF)