CVE-2020-10511

Опубликовано: 15 апр. 2020

Источник: nvd

CVSS3: 9.8

CVSS2: 10

EPSS Низкий

Описание

HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. Attackers can exploit these flaws to access unauthorized functionality via a crafted URL.

Ссылки

https://gist.github.com/tonykuo76/7d41c414f23ef1e47c97f7b97e1b33b0
Third Party Advisory
https://www.chtsecurity.com/news/19400b04-ea92-4eaa-afa7-2449fd9b2e0b
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-3535-e40ec-1.html
Third Party Advisory
https://gist.github.com/tonykuo76/7d41c414f23ef1e47c97f7b97e1b33b0
Third Party Advisory
https://www.chtsecurity.com/news/19400b04-ea92-4eaa-afa7-2449fd9b2e0b
Third Party Advisory
https://www.twcert.org.tw/tw/cp-132-3535-e40ec-1.html
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hgiga:oaklouds_ccm\@il:-:*:*:*:*:*:*:*

EPSS

Процентиль: 66%

0.00517

Низкий

9.8 Critical

CVSS3

10 Critical

CVSS2

Дефекты

CWE-78

Связанные уязвимости

GHSA-m4mj-5hcj-76vr