CVE-2020-36125

Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.
Configurations

Configuration 1

cpe:2.3:a:paxtechnology:paxstore:*:*:*:*:*:*:*:*

Information

Published : 2021-05-07 11:15

Updated : 2022-06-28 02:11


NVD link : CVE-2020-36125

Mitre link : CVE-2020-36125

Products Affected
No products.
CWE