3 matches found
CVE-2020-25095
CVE-2020-25095 concerns LogRhythm Platform Manager (PM) 7.4.9, where the web interface is vulnerable to CSRF via Cross-site WebSocket Hijacking (CSWH). If a logged-in PM user visits a malicious site in the same browser session, the attacker can establish a WebSocket from the victim’s client to th...
CVE-2020-25094
CVE-2020-25094 affects LogRhythm Platform Manager 7.4.9. Affected component: WebSocket handling that forwards commands to a LogRhythm Smart Response agent. Root cause: command injection via WebSocket, enabling arbitrary program names/arguments execution with LocalSystem privileges on remote hosts...
CVE-2020-25096
CVE-2020-25096 affects LogRhythm Platform Manager (PM) 7.4.9 and describes an Incorrect Access Control issue where WebSocket-based communication to the PM application server is not protected by access control, allowing a low-privilege user to interact with any back-end component that has a LogRhy...