Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 1:18 p.m.14 views

CVE-2020-8495

In Kronos Web Time and Attendance webTA 3.8.x and later 3.x versions before 4.0, the com.threeis.webta.H491delegate servlet allows an attacker with Timekeeper or Supervisor privileges to gain unauthorized administrative privileges within the application via the delegate, delegateRole, and...

7.5CVSS6.9AI score0.03138EPSS
Exploits5References1
Check Point Advisories
Check Point Advisories
added 2021/03/28 12:0 a.m.14 views

Kronos Web Time And Attendance Privilege Escalation (CVE-2020-8495)

A privilege escalation vulnerability exists in Kronos Web Time And Attendance. Successful exploitation of this vulnerability would allow a remote attacker to gain unauthorized access to the affected system...

6CVSS5.1AI score0.03138EPSS
Exploits5
0day.today
0day.today
added 2020/02/05 12:0 a.m.208 views

Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Exploit

Exploit for java platform in category web applications Exploit Title: Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Discovered by: Elwood Buck & Nolan B. Kennedy of Mindpoint Group Exploit Author: Nolan B. Kennedy nxkennedy Discovery date: 2019-09-20 Vendor Homepage:...

0.2AI score0.03138EPSS
Exploits7
exploitpack
exploitpack
added 2020/02/05 12:0 a.m.76 views

Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation

Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Exploit Title: Kronos WebTA 4.0 - Authenticated Remote Privilege Escalation Discovered by: Elwood Buck & Nolan B. Kennedy of Mindpoint Group Exploit Author: Nolan B. Kennedy nxkennedy Discovery date: 2019-09-20 Vendor Homepage:...

6.5CVSS0.8AI score0.03138EPSS
Exploits7
Cvelist
Cvelist
added 2020/01/30 9:18 p.m.40 views

CVE-2020-8495

In Kronos Web Time and Attendance webTA 3.8.x and later 3.x versions before 4.0, the com.threeis.webta.H491delegate servlet allows an attacker with Timekeeper or Supervisor privileges to gain unauthorized administrative privileges within the application via the delegate, delegateRole, and...

7.5CVSS7.9AI score0.03138EPSS
Exploits5References3
CVE
CVE
added 2020/01/30 9:18 p.m.112 views

CVE-2020-8495

Kronos WebTA 3.8.x and 3.x before 4.0 contains a privilege-escalation vulnerability in the com.threeis.webta.H491delegate servlet. An attacker with Timekeeper or Supervisor privileges can exploit the delegate, delegateRole, and delegatorUserId parameters to gain unauthorized administrative privil...

7.5CVSS7.8AI score0.03138EPSS
Exploits5References3Affected Software1
Rows per page
Query Builder