CVE-2022-48587
A SQL injection vulnerability exists in the “schedule editor” feature of the ScienceLogic SL1 that takes unsanitized user‐controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.
Learn more about our Cis Benchmark Audit For Microsoft Sql Server.