SQL injection vulnerability in the Help Desk application in Wave EMBASSY Remote Administration Server (ERAS) allows remote authenticated users to execute arbitrary SQL commands via the. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.
SQLi
Command Injection
Embassy Remote Administration Server
Embassy Remote Administration Server Help Desk
NVD
CVSS 2.0
9.0
EPSS
0.9%