3 matches found
CVE-2020-7358
In AppSpider installer versions prior to 7.2.126, the AppSpider installer calls an executable which can be placed in the appropriate directory by an attacker with access to the local machine. This would prevent the installer from distinguishing between a valid executable called during an...
CVE-2020-7358
The CVE-2020-7358 entry relates to the AppSpider Installer. Affected software: AppSpider installer versions prior to 7.2.126. Vulnerable component: the installer launches an executable, which can be placed in the installation directory by a user with local access. Root cause: the installer cannot...
CVE-2020-7358 Code Injection in Rapid7 AppSpider Pro Installer
In AppSpider installer versions prior to 7.2.126, the AppSpider installer calls an executable which can be placed in the appropriate directory by an attacker with access to the local machine. This would prevent the installer from distinguishing between a valid executable called during an...