Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-05-07T10:35:09

Updated: 2024-08-04T17:16:14.103Z

Reserved: 2021-01-04T00:00:00

Link: CVE-2020-36125

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-07T11:15:08.077

Modified: 2024-11-21T05:28:45.783

Link: CVE-2020-36125

cve-icon Redhat

No data.