Security Advisory

CVE-2020-15958

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-09-18 14:32:26

Last updated 2024-08-04 13:30:23

Assigner mitre

State PUBLISHED

Description

An issue was discovered in 1CRM System through 8.6.7. An insecure direct object reference to internally stored files allows a remote attacker to access various sensitive information via an unauthenticated request with a predictable URL.

← Browse all CVEs View on cve.org ↗