CVE-2020-13994 – An issue was discovered in Mods for HESK 3.1.0 through 2019.1.0. A privileged user can ach …

9 July 2020

Vuln ID: CVE-2020-13994

Published: 2020-07-09 15:15:12Z

Description: An issue was discovered in Mods for HESK 3.1.0 through 2019.1.0. A privileged user can achieve code execution on the server via a ticket because of improper access control of uploaded resources. This might be exploitable in conjunction with CVE-2020-13992 by an unauthenticated attacker.

Source: NVD.NIST.GOV

Date:

9 July 2020

Categorie(s):

NVD

Tag(s):

NVD

How to revamp your cybersecurity in the middle of the chaos18 May 2024
Leveling the cybersecurity playing field18 May 2024
Automated pentesting in the cloud18 May 2024
Hardware cybersecurity leader, Flexxon, introduces Server Defender18 May 2024
Aussie cops probe MediSecure’s ‘large-scale ransomware data breach’18 May 2024