Lucene search

K

CVE-2020-29127

🗓️ 30 Nov 2020 07:12:15Reported by mitreType

cve

cve🔗 web.nvd.nist.gov👁 62 Views🌐 WEB

Fujitsu Eternus Storage DX200 S4 root privilege escalatio

Show more

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 4
NVD	CVE-2020-29127	30 Nov 202007:15	–	nvd
Prion	Design/Logic Flaw	30 Nov 202007:15	–	prion
Packet Storm	Fujitsu Eternus Storage DX200 S4 Broken Authentication	26 Nov 202000:00	–	packetstorm
Cvelist	CVE-2020-29127	30 Nov 202006:30	–	cvelist

Nvd

Node

fujitsu eternus_storage_dx200_s4_firmwareRange≤2020-11-25

AND

fujitsu eternus_storage_dx200_s4Match-

Source	Link
cxsecurity	www.cxsecurity.com/issue/WLB-2020110215
packetstormsecurity	www.packetstormsecurity.com/files/160255/Fujitsu-Eternus-Storage-DX200-S4-Broken-Authentication.html
first	www.first.org/members/teams/fujitsu_psirt
seccops	www.seccops.com/fujitsu-eternus-storage-dx200-s4-broken-authentication/

Parameter	Position	Path	Description	CWE
cspid	query param	cgi-bin/csp	Broken authentication allows access to root privileges after logging in.	CWE-287
csppage	query param	cgi-bin/csp	Broken authentication allows access to root privileges after logging in.	CWE-287
csplang	query param	cgi-bin/csp	Broken authentication allows access to root privileges after logging in.	CWE-287

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Nov 2020 07:15Current

9.4High risk

Vulners AI Score9.4

CVSS210

CVSS39.8

EPSS0.00533

fujitsu eternus storage dx200 s4 root user privilege escalation cve-2020-29127 nvd