Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistVmwareCVELIST:CVE-2020-3985
HistoryNov 24, 2020 - 3:35 p.m.

CVE-2020-3985

2020-11-2415:35:00
vmware
raw.githubusercontent.com
2

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.2%

JSON

The SD-WAN Orchestrator 3.3.2 prior to 3.3.2 P3 and 3.4.x prior to 3.4.4 allows an access to set arbitrary authorization levels leading to a privilege escalation issue. An authenticated SD-WAN Orchestrator user may exploit an application weakness and call a vulnerable API to elevate their privileges.

Related

cve 1
prion 1
vmware 1
cve
cve
CVE-2020-3985
2020-11-24 16:15:00
prion
prion
Privilege escalation
2020-11-24 16:15:00
vmware
vmware
VMware SD-WAN Orchestrator updates address multiple security vulnerabilities (CVE-2020-3984, CVE-2020-3985, CVE-2020-4000, CVE-2020-4001, CVE-2020-4002 ,CVE-2020-4003)
2020-11-18 00:00:00

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.2%

JSON
Related for CVELIST:CVE-2020-3985
cve1prion1vmware1