Lucene search
K

Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure

🗓️ 08 Jul 2026 05:22:06Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 50 Views

Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure. Vulnerability allows access to sensitive information within /pme subdirectories

Related
Refs
Code
ReporterTitlePublishedViews
Family
Circl
CVE-2020-27361
15 Jan 202413:14
circl
CNNVD
Akkadian Provisioning Manager 安全漏洞
1 Jul 202100:00
cnnvd
CVE
CVE-2020-27361
1 Jul 202115:57
cve
Cvelist
CVE-2020-27361
1 Jul 202115:57
cvelist
NVD
CVE-2020-27361
1 Jul 202116:15
nvd
Prion
Design/Logic Flaw
1 Jul 202116:15
prion
RedhatCVE
CVE-2020-27361
22 May 202516:20
redhatcve
id: CVE-2020-27361

info:
  name: Akkadian Provisioning Manager 4.50.02 - Sensitive Information Disclosure
  author: gy741
  severity: high
  description: Akkadian Provisioning Manager 4.50.02 could allow viewing of sensitive information within the /pme subdirectories.
  impact: |
    An attacker can exploit this vulnerability to gain access to sensitive information, potentially leading to further attacks.
  remediation: |
    Apply the latest patch or upgrade to a newer version of Akkadian Provisioning Manager to fix the vulnerability.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2020-27361
    - https://blog.blacklanternsecurity.com/p/akkadian-provisioning-manager-information
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2020-27361
    cwe-id: CWE-668
    epss-score: 0.06714
    epss-percentile: 0.93136
    cpe: cpe:2.3:a:akkadianlabs:akkadian_provisioning_manager:4.50.02:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    vendor: akkadianlabs
    product: akkadian_provisioning_manager
  tags: cve,cve2020,akkadian,listing,exposure,akkadianlabs,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/pme/media/"

    matchers-condition: and
    matchers:
      - type: word
        words:
          - "Index of /pme/media"
          - "Parent Directory"
        condition: and

      - type: status
        status:
          - 200
# digest: 490a0046304402202c4cca2af7247f0b83b87c030a094a895cd35da7a1430a275cdd3eeee3aef04e02207bcd60101f18a3fd3a65fdd82f8a79eead6ea09d890a3c3a96688420799fa433:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
7.1High risk
Vulners AI Score7.1
CVSS 25
CVSS 3.17.5
EPSS0.06714
50