CVE-2020-7004

VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow weak or insecure permissions on the VBASE directory resulting in elevation of privileges or malicious effects on the system the next time a privileged user runs the application.
References
Link Resource
https://www.us-cert.gov/ics/advisories/icsa-20-084-01 Mitigation Third Party Advisory US Government Resource
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:visam:vbase_editor:11.5.0.2:*:*:*:*:*:*:*
cpe:2.3:a:visam:vbase_web-remote:-:*:*:*:*:*:*:*

Information

Published : 2020-04-03 11:15

Updated : 2020-04-06 08:46


NVD link : CVE-2020-7004

Mitre link : CVE-2020-7004


JSON object : View

CWE
CWE-276

Incorrect Default Permissions

Advertisement

dedicated server usa

Products Affected

visam

  • vbase_web-remote
  • vbase_editor