Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 2:50 p.m.10 views

CVE-2020-15170

apollo-adminservice before version 1.7.1 does not implement access controls. If users expose apollo-adminservice to internetwhich is not recommended, there are potential security issues since apollo-adminservice is designed to work in intranet and it doesn't have access control built-in. Maliciou...

7CVSS6.9AI score0.01315EPSS
Exploits0
NVD
NVD
added 2020/09/10 7:15 p.m.18 views

CVE-2020-15170

apollo-adminservice before version 1.7.1 does not implement access controls. If users expose apollo-adminservice to internetwhich is not recommended, there are potential security issues since apollo-adminservice is designed to work in intranet and it doesn't have access control built-in. Maliciou...

7CVSS0.01315EPSS
Exploits0References2
OSV
OSV
added 2020/09/10 7:15 p.m.10 views

CVE-2020-15170

apollo-adminservice before version 1.7.1 does not implement access controls. If users expose apollo-adminservice to internetwhich is not recommended, there are potential security issues since apollo-adminservice is designed to work in intranet and it doesn't have access control built-in. Maliciou...

7CVSS7AI score
Exploits0References2
CVE
CVE
added 2020/09/10 6:40 p.m.74 views

CVE-2020-15170

CVE-2020-15170 affects apollo-adminservice prior to version 1.7.1, which does not implement access controls. Several trusted sources indicate that exposing apollo-adminservice to the Internet can allow direct access to APIs, enabling reading/editing of application configurations. The root cause i...

7CVSS6.9AI score0.01315EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder