Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2020-9423
HistoryMar 18, 2020 - 9:04 p.m.

CVE-2020-9423

2020-03-1821:04:55
mitre
www.cve.org
5

AI Score

9.1

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON

LogicalDoc before 8.3.3 could allow an attacker to upload arbitrary files, leading to command execution or retrieval of data from the database. LogicalDoc provides a functionality to add documents. Those documents could then be used for multiple tasks, such as version control, shared among users, applying tags, etc. This functionality could be abused by an unauthenticated attacker to upload an arbitrary file in a restricted folder. This would lead to the executions of malicious commands with root privileges.

Related

nvd 2
cve 2
prion 2
coresecurity 1
cvelist 1
nvd
nvd
CVE-2020-9423
2020-03-18 22:15:12
CVE-2020-10366
2020-04-08 00:15:11
cve
cve
CVE-2020-9423
2020-03-18 22:15:12
CVE-2020-10366
2020-04-08 00:15:11
prion
prion
Design/Logic Flaw
2020-03-18 22:15:00
Directory traversal
2020-04-08 00:15:00
coresecurity
coresecurity
LogicalDoc Virtual Appliance Multiple Vulnerabilities
2020-03-18 00:00:00
cvelist
cvelist
CVE-2020-10366
2020-04-07 23:58:00

AI Score

9.1

Confidence

High

EPSS

0.007

Percentile

80.4%

JSON
Related for CVELIST:CVE-2020-9423
nvd2cve2prion2coresecurity1cvelist1