3 matches found
CVE-2020-36199
CVE-2020-36199 affects TinyCheck prior to commits 9fd360d and ea53de8. The root cause is insufficient validation of input parameters, enabling potential command injection. CVSS metrics indicate high to critical severity (CVSS2: 7.5 HIGH; CVSS3.1: 9.8 CRITICAL). The provided documents do not speci...
CVE-2020-35929
CVE-2020-35929 concerns TinyCheck prior to commits 9fd360d and ea53de8, where the installation script contained hard-coded credentials for the backend. This creates potential for unauthorized access to remote data. The available documents identify the vulnerable component as the tool’s installati...
CVE-2020-36200
CVE-2020-36200 affects TinyCheck; before commits 9fd360d and ea53de8, an authenticated attacker could trigger an HTTP GET to crafted URLs. NVD metrics: CVSS v3.1 base score 6.5 (Network, Low access complexity, Low privileges, No user interaction), with Confidentiality: None, Integrity: High, Avai...