Security Advisory

CVE-2020-13963

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-21 20:57:32

Last updated 2024-08-04 12:32:14

Assigner mitre

State PUBLISHED

Description

SOPlanning before 1.47 has Incorrect Access Control because certain secret key information, and the related authentication algorithm, is public. The key for admin is hardcoded in the installation code, and there is no key for publicsp (which is a guest account).

← Browse all CVEs View on cve.org ↗