3 matches found
CVE-2020-25563
In SapphireIMS 5.0, it is possible to create local administrator on any client without requiring any credentials by directly accessing RemoteMgmtTaskSave Automation Tasks feature and not having a JSESSIONID...
CVE-2020-25563
SapphireIMS 5.0 is affected by an authentication-bypass vulnerability in the RemoteMgmtTaskSave (Automation Tasks) path that allows an unauthenticated user to create a local administrator on any client by accessing RemoteMgmtTaskSave without a JSESSIONID. Root cause: direct access to an automatio...
CVE-2020-25563
In SapphireIMS 5.0, it is possible to create local administrator on any client without requiring any credentials by directly accessing RemoteMgmtTaskSave Automation Tasks feature and not having a JSESSIONID...