Количество 2
Количество 2
CVE-2020-11977
больше 5 лет назад
In Apache Syncope 2.1.X releases prior to 2.1.7, when the Flowable extension is enabled, an administrator with workflow entitlements can use Shell Service Tasks to perform malicious operations, including but not limited to file read, file write, and code execution.
CVSS3: 7.2
EPSS: Низкий
GHSA-p2rp-cmjq-r7wm
больше 4 лет назад
Shell command injection in Apache Syncope
CVSS3: 7.2
EPSS: Низкий
Уязвимостей на страницу
20
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11977 In Apache Syncope 2.1.X releases prior to 2.1.7, when the Flowable extension is enabled, an administrator with workflow entitlements can use Shell Service Tasks to perform malicious operations, including but not limited to file read, file write, and code execution. | CVSS3: 7.2 | 1% Низкий | больше 5 лет назад |
| GHSA-p2rp-cmjq-r7wm Shell command injection in Apache Syncope | CVSS3: 7.2 | 1% Низкий | больше 4 лет назад |
Уязвимостей на страницу
20