CVE-2020-13422

Publication date

2021-04-06 20:24:39

Family

mitre

State

PUBLISHED

Description

OpenIAM before 4.2.0.3 does not verify if a user has permissions to perform /webconsole/rest/api/* administrative actions.