Primary

Context

Infoblox NetMRI Authenticated SQL Injection Vulnerability

Vulnerability

Patched

A SQL injection vulnerability has been identified in Infoblox NetMRI versions prior to 7.6.1. This issue allows authenticated users to manipulate SQL queries through user-controlled input, potentially leading to SQL injection attacks or authorization bypass via URL or parameter manipulation.

Impact

Exploitation of this vulnerability allows for authenticated SQL injection, which could be used to manipulate the database, extract sensitive information, or bypass authorization mechanisms.

Remediation

Users can upgrade to Infoblox NetMRI version 7.6.1 or later. For versions 7.5.3, 7.5.4, and 7.6.0, a hotfix is available on the autoupdate server. This hotfix can be applied using the 'au' command, or the attached hotfix files can be downloaded and installed manually.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

3.1

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

3.1

exploitability

4.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Infoblox NetMRI Authenticated SQL Injection Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Infoblox NetMRI

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating