Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-07T10:35:09
Updated: 2024-08-04T17:16:14.103Z
Reserved: 2021-01-04T00:00:00
Link: CVE-2020-36125
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-05-07T11:15:08.077
Modified: 2024-11-21T05:28:45.783
Link: CVE-2020-36125
Redhat
No data.