{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T02:33:23.911","vulnerabilities":[{"cve":{"id":"CVE-2019-15016","sourceIdentifier":"psirt@paloaltonetworks.com","published":"2019-10-09T21:15:12.757","lastModified":"2026-06-17T02:19:30.840","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"An SQL injection vulnerability exists in the management interface of Zingbox Inspector versions 1.288 and earlier, that allows for unsanitized data provided by an authenticated user to be passed from the web UI into the database."},{"lang":"es","value":"Se presenta una vulnerabilidad de inyección SQL en la interfaz de administración de Zingbox Inspector versiones 1.288 y anteriores, lo que permite que los datos no saneados provistos por un usuario autenticado sean pasados desde la interfaz de usuario web hacia la base de datos."}],"affected":[{"source":"psirt@paloaltonetworks.com","affectedData":[{"vendor":"n/a","product":"Palo Alto Networks Zingbox Inspector","versions":[{"version":"Zingbox Inspector, versions 1.288 and earlier.","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-89"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:zingbox:inspector:*:*:*:*:*:*:*:*","versionEndIncluding":"1.288","matchCriteriaId":"AF07FEC8-C4B9-4558-B034-21C5B31547A0"}]}]}],"references":[{"url":"https://security.paloaltonetworks.com/CVE-2019-15016","source":"psirt@paloaltonetworks.com","tags":["Third Party Advisory"]},{"url":"https://security.paloaltonetworks.com/CVE-2019-15016","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory"]}]}}]}