{"containers":{"cna":{"affected":[{"product":"CA Network Flow Analysis (NFA)","vendor":"n/a","versions":[{"status":"affected","version":"9.3.8, 9.5, 10.0, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 10.0.6, 10.0.7, 21.2.1"}]}],"descriptions":[{"lang":"en","value":"CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data."}],"problemTypes":[{"descriptions":[{"description":"SQL injection","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2021-12-03T18:06:06.000Z","orgId":"e291eae9-7c0a-46ac-ba7d-5251811f8b7f","shortName":"ca"},"references":[{"tags":["x_refsource_MISC"],"url":"https://support.broadcom.com/external/content/security-advisories/CA20211201-01-Security-Notice-for-CA-Network-Flow-Analysis/19689"},{"name":"20211203 CA20211201-01: Security Notice for CA Network Flow Analysis","tags":["mailing-list","x_refsource_FULLDISC"],"url":"http://seclists.org/fulldisclosure/2021/Dec/0"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"vuln@ca.com","ID":"CVE-2021-44050","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"CA Network Flow Analysis (NFA)","version":{"version_data":[{"version_value":"9.3.8, 9.5, 10.0, 10.0.2, 10.0.3, 10.0.4, 10.0.5, 10.0.6, 10.0.7, 21.2.1"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"CA Network Flow Analysis (NFA) 21.2.1 and earlier contain a SQL injection vulnerability in the NFA web application, due to insufficient input validation, that could potentially allow an authenticated user to access sensitive data."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"SQL injection"}]}]},"references":{"reference_data":[{"name":"https://support.broadcom.com/external/content/security-advisories/CA20211201-01-Security-Notice-for-CA-Network-Flow-Analysis/19689","refsource":"MISC","url":"https://support.broadcom.com/external/content/security-advisories/CA20211201-01-Security-Notice-for-CA-Network-Flow-Analysis/19689"},{"name":"20211203 CA20211201-01: Security Notice for CA Network Flow Analysis","refsource":"FULLDISC","url":"http://seclists.org/fulldisclosure/2021/Dec/0"}]}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T04:10:17.311Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://support.broadcom.com/external/content/security-advisories/CA20211201-01-Security-Notice-for-CA-Network-Flow-Analysis/19689"},{"name":"20211203 CA20211201-01: Security Notice for CA Network Flow Analysis","tags":["mailing-list","x_refsource_FULLDISC","x_transferred"],"url":"http://seclists.org/fulldisclosure/2021/Dec/0"}]}]},"cveMetadata":{"assignerOrgId":"e291eae9-7c0a-46ac-ba7d-5251811f8b7f","assignerShortName":"ca","cveId":"CVE-2021-44050","datePublished":"2021-12-02T18:18:41.000Z","dateReserved":"2021-11-19T00:00:00.000Z","dateUpdated":"2024-08-04T04:10:17.311Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}