CVE-2020-4125

High

Using HCL Marketing Operations 9.1.2.4, 10.1.x, 11.1.0.x, a malicious attacker could download files from the RHEL environment by doing some…

HCL·CWE-494·Published 2020-07-20

CVSS

8.1

EPSS

0.00

KEV

Exploits

cve.orgen

221 chars

Using HCL Marketing Operations 9.1.2.4, 10.1.x, 11.1.0.x, a malicious attacker could download files from the RHEL environment by doing some modification in the link, giving the attacker access to confidential information.

NVDen

221 chars

NVDes

236 chars

Usando HCL Marketing Operations versiones 9.1.2.4, 10.1.x, 11.1.0.x, un atacante malicioso podría descargar archivos desde el entorno RHEL al hacer alguna modificación en el enlace, dándole acceso al atacante a información confidencial

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	5.5	8.0	4.9	AV:N/AC:L/Au:S/C:P/I:P/A:N
3.1	Primary	NVD	8.1	2.8	5.2	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N