4 matches found
BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation Vulnerability
Exploit for multiple platform in category web applications Exploit Title: BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation Exploit Author: William Summerhill Vendor homepage: https://www.globalradar.com/ Version: BSA Radar - Version 1.6.7234.24750 and lower CVE-2020-14945 - Privilege...
BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation
Exploit Title: BSA Radar 1.6.7234.24750 - Authenticated Privilege Escalation Date: 2020-07-06 Exploit Author: William Summerhill Vendor homepage: https://www.globalradar.com/ Version: BSA Radar - Version 1.6.7234.24750 and lower CVE-2020-14945 - Privilege Escalation Description: A privilege...
CVE-2020-14945
A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights i.e., the BankAdmin role via modified SaveUser data...
CVE-2020-14945
Global RADAR BSA Radar (versions up to 1.6.7234.24750) contains an authenticated privilege-escalation flaw that lets a low-privileged user gain administrator rights (BankAdmin) by forging/modifying SaveUser data via the SaveUser API. The vulnerability stems from handling of user profile data retr...