Lucene search

K
cvelistMitreCVELIST:CVE-2020-10547
HistoryJun 04, 2020 - 3:24 a.m.

CVE-2020-10547

2020-06-0403:24:41
mitre
www.cve.org

9.9 High

AI Score

Confidence

High

0.384 Low

EPSS

Percentile

97.2%

rConfig 3.9.4 and previous versions has unauthenticated compliancepolicyelements.inc.php SQL injection. Because, by default, nodes’ passwords are stored in cleartext, this vulnerability leads to lateral movement, granting an attacker access to monitored network devices.

9.9 High

AI Score

Confidence

High

0.384 Low

EPSS

Percentile

97.2%