U.motion Builder Software Version 1.3.4 SQL Injection (CWE-89) Vulnerability

U.motion Builder Software Version 1.3.4 SQL Injection (CWE-89) Vulnerability

CVE-2018-7841 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A SQL Injection (CWE-89) vulnerability exists in U.motion Builder software version 1.3.4 which could cause unwanted code execution when an improper set of characters is entered.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.