CVE-2020-27180

High

konzept-ix publiXone before 2020.015 allows attackers to download files by iterating over the IXCopy fileID parameter.

mitre·CWE-330·Published 2020-10-27

CVSS

7.5

EPSS

0.01

KEV

Exploits

cve.orgen

118 chars

konzept-ix publiXone before 2020.015 allows attackers to download files by iterating over the IXCopy fileID parameter.

NVDen

118 chars

konzept-ix publiXone before 2020.015 allows attackers to download files by iterating over the IXCopy fileID parameter.

NVDes

134 chars

konzept-ix publiXone versiones anteriores a 2020.015, permite a atacantes descargar archivos iterando sobre el parámetro IXCopy fileID

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.0	10.0	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
3.1	Primary	NVD	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N