exploitDog

CVE-2020-29165

Опубликовано: 03 фев. 2021

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.

Ссылки

https://gist.github.com/leommxj/0a32afeeaac960682c5b7c9ca8ed070d
Exploit
Third Party Advisory
https://pacsone.net/download.htm
Product
Vendor Advisory
https://gist.github.com/leommxj/0a32afeeaac960682c5b7c9ca8ed070d
Exploit
Third Party Advisory
https://pacsone.net/download.htm
Product
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:rainbowfishsoftware:pacsone_server:*:*:*:*:*:*:*:*

Версия до 7.1.1 (исключая)

EPSS

Процентиль: 77%

0.0108

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-306

Связанные уязвимости

GHSA-f935-fh29-4mfr

github

больше 3 лет назад

PacsOne Server (PACS Server In One Box) below 7.1.1 is affected by incorrect access control, which can result in remotely gaining administrator privileges.

EPSS

Процентиль: 77%

0.0108

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-306