2 matches found
CVE-2020-15643
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Marvell QConvergeConsole 5.5.0.64. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...
CVE-2020-15643
CVE-2020-15643 affects Marvell QConvergeConsole 5.5.0.64. The vulnerability is in GWTTestServiceImpl.saveAsText, due to insufficient validation of a user-supplied path used in file operations, allowing remote code execution in the SYSTEM context after bypassing authentication. The issue is networ...