CVE-2017-14851

CVE-2017-14851 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The vulnerability is in the login page, where the authentication validation process contains an insecure SELECT query. The attack allows for authentication bypass.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.