Security Advisory

CVE-2020-26173

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-12-18 09:27:35

Last updated 2024-08-04 15:49:07

Assigner mitre

State PUBLISHED

Description

An incorrect access control implementation in Tangro Business Workflow before 1.18.1 allows an attacker to download documents (PDF) by providing a valid document ID and token. No further authentication is required.

← Browse all CVEs View on cve.org ↗