CVE-2020-10563

2020-03-1321:15:12

Google

osv.dev

7.4 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.5%

An issue was discovered in DEVOME GRR before 3.4.1c. frmcontactlist.php mishandles a SQL query.

CPENameOperatorVersion
grreq.3.4.1
grreq3.4.1a
grreq.3.4.1-RC3
grreq.3.4.1-RC2
grreq.3.4.1-RC1

Name	Operator	Version
grr	eq	.3.4.1
grr	eq	3.4.1a
grr	eq	.3.4.1-RC3
grr	eq	.3.4.1-RC2
grr	eq	.3.4.1-RC1

References

cvecps.mitre.org/cps/workitems/create/?cveId=CVE-2020-10563

github.com/JeromeDevome/GRR/commit/2c6edacd9e15c75a0c2ef472470481ffb6edc7d8

github.com/JeromeDevome/GRR/releases/tag/v3.4.1c