A SQL injection issue was discovered in ThycoticCentrify Secret Server before 11.0.000007. The only affected versions are 10.9.000032 through 11.0.000006.
References
Link | Resource |
---|---|
https://docs.thycotic.com/bulletins/current/2021/11.0.000007.md | Vendor Advisory |
https://docs.thycotic.com/ss/11.0.0/release-notes/ss-rn-11-0-000007.md | Release Notes Vendor Advisory |
Configurations
Information
Published : 2021-10-01 12:15
Updated : 2021-10-07 13:08
NVD link : CVE-2021-41845
Mitre link : CVE-2021-41845
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
thycotic
- secret_server