Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:6 p.m.12 views

CVE-2020-9384

An Insecure Direct Object Reference IDOR vulnerability in the Change Password feature of Subex ROC Partner Settlement 10.5 allows remote authenticated users to achieve account takeover via manipulation of POST parameters. NOTE: This vulnerability may only affect a testing version of the applicati...

8.8CVSS6.6AI score0.01902EPSS
Exploits2References1
NVD
NVD
added 2020/04/14 8:15 p.m.21 views

CVE-2020-9384

An Insecure Direct Object Reference IDOR vulnerability in the Change Password feature of Subex ROC Partner Settlement 10.5 allows remote authenticated users to achieve account takeover via manipulation of POST parameters. NOTE: This vulnerability may only affect a testing version of the applicati...

8.8CVSS8.3AI score0.01902EPSS
Exploits2References2
Prion
Prion
added 2020/04/14 8:15 p.m.19 views

Design/Logic Flaw

An Insecure Direct Object Reference IDOR vulnerability in the Change Password feature of Subex ROC Partner Settlement 10.5 allows remote authenticated users to achieve account takeover via manipulation of POST parameters. NOTE: This vulnerability may only affect a testing version of the applicati...

6.5CVSS8.2AI score0.01902EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2020/04/14 7:52 p.m.13 views

CVE-2020-9384

An Insecure Direct Object Reference IDOR vulnerability in the Change Password feature of Subex ROC Partner Settlement 10.5 allows remote authenticated users to achieve account takeover via manipulation of POST parameters. NOTE: This vulnerability may only affect a testing version of the applicati...

6.6AI score0.01902EPSS
Exploits2References2
CVE
CVE
added 2020/04/14 7:52 p.m.62 views

CVE-2020-9384

The entries describe an Insecure Direct Object Reference (IDOR) in Subex ROC Partner Settlement 10.5 Change Password. Affected component: Change Password feature; root cause: manipulation of POST parameters enabling account takeover by remote authenticated users. Impact: account compromise report...

8.8CVSS8.2AI score0.01902EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/04/14 12:0 a.m.3 views

PT-2020-20625 · Subex · Subex Roc Partner Settlement

Name of the Vulnerable Software and Affected Versions: Subex ROC Partner Settlement version 10.5 Description: An Insecure Direct Object Reference IDOR vulnerability in the Change Password feature allows remote authenticated users to achieve account takeover via manipulation of POST parameters. Th...

8.8CVSS6.7AI score0.01902EPSS
Exploits2References5
Rows per page
Query Builder