Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistIcscertCVELIST:CVE-2020-16240
HistorySep 23, 2020 - 1:06 p.m.

CVE-2020-16240

2020-09-2313:06:07
CWE-639
icscert
www.cve.org
1

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.6%

JSON

GE Digital APM Classic, Versions 4.4 and prior. An insecure direct object reference (IDOR) vulnerability allows user account data to be downloaded in JavaScript object notation (JSON) format by users who should not have access to such functionality. An attacker can download sensitive data related to user accounts without having the proper privileges.

CNA Affected

[
  {
    "product": "GE Digital APM Classic",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions 4.4 and prior"
      }
    ]
  }
]

Related

cve 1
prion 1
nvd 1
ics 1
cve
cve
CVE-2020-16240
2020-09-23 14:15:12
prion
prion
Design/Logic Flaw
2020-09-23 14:15:00
nvd
nvd
CVE-2020-16240
2020-09-23 14:15:12
ics
ics
GE Digital APM Classic
2020-09-22 12:00:00

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

34.6%

JSON
Related for CVELIST:CVE-2020-16240
cve1prion1nvd1ics1