Penetration Testing UK

CVE-2016-1562

CVE-2016-1562

Severity Score

4.0

Access Vector

NETWORK

Complexity

LOW

Authentication

SINGLE_INSTANCE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

Summary

The REST API in the DTE Energy Insight application before 1.7.8 for Android allows remote authenticated users to obtain unspecified customer information via a SQL expression in the filter parameter.

Learn more about our Penetration Testing services.