Lucene search

K
cvelistMitreCVELIST:CVE-2020-10546
HistoryJun 04, 2020 - 3:25 a.m.

CVE-2020-10546

2020-06-0403:25:04
mitre
www.cve.org

9.9 High

AI Score

Confidence

High

0.384 Low

EPSS

Percentile

97.2%

rConfig 3.9.4 and previous versions has unauthenticated compliancepolicies.inc.php SQL injection. Because, by default, nodes’ passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.

9.9 High

AI Score

Confidence

High

0.384 Low

EPSS

Percentile

97.2%