CVE-2020-12874

Опубликовано: 14 мая 2020

Источник: nvd

CVSS3: 6.5

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.

Ссылки

https://www.veritas.com/content/support/en_US/security/VTS20-003
Vendor Advisory
https://www.veritas.com/content/support/en_US/security/VTS20-003
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:veritas:aptare:*:*:*:*:*:*:*:*

Версия до 10.4 (исключая)

EPSS

Процентиль: 41%

0.00195

Низкий

6.5 Medium

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-fr85-fm4x-7g26

github

больше 3 лет назад

Veritas APTARE versions prior to 10.4 included code that bypassed the normal login process when specific authentication credentials were provided to the server.

EPSS

Процентиль: 41%

0.00195

Низкий

6.5 Medium

CVSS3

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-287