2 matches found
CVE-2020-7383
CVE-2020-7383 is a SQL injection vulnerability in Rapid7 Nexpose prior to 6.6.49. It could allow an authenticated user with low privileges to access resources and make changes they should not be able to access. Publicly documented remediation states that Nexpose 6.6.49 fixes the issue (updates re...
CVE-2020-7383 SQL Injection in Rapid7 Nexpose
A SQL Injection issue in Rapid7 Nexpose version prior to 6.6.49 that may have allowed an authenticated user with a low permission level to access resources & make changes they should not have been able to access...