What the vulnerability does

01Description

Multiple vulnerabilities could allow an attacker with low privileges to perform SQL injection on WebAccess/NMS (versions prior to 3.0.2) to gain access to sensitive information.

Key dates

02Disclosure timeline

April 9, 2020 CVE published
August 4, 2024 Record updated