Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2021-76794
HistoryAug 12, 2021 - 12:00 a.m.

Tecknodreams SapphireIMS Access Control Error Vulnerability

2021-08-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
tecknodreams sapphireims
access control
vulnerability
remotemgmttasksave
jsessionid
local administrator
authentication bypass
itil 2011 certified
service management system
enterprise-class
security incident

EPSS

0.004

Percentile

73.8%

JSON

Tecknodreams SapphireIMS is an ITIL 2011 certified enterprise-class service management system from Tecknodreams India.A security vulnerability exists in Tecknodreams SapphireIMS version 5.0, which stems from direct access to the RemoteMgmtTaskSave feature and no JSESSIONID, which can be used to create a local administrator on any client without any credentials. No details of the vulnerability are currently available.

Related

prion 1
cvelist 1
cve 1
nvd 1
prion
prion
Design/Logic Flaw
2021-08-11 21:15:00
cvelist
cvelist
CVE-2020-25563
2021-08-11 20:21:57
cve
cve
CVE-2020-25563
2021-08-11 21:15:08
nvd
nvd
CVE-2020-25563
2021-08-11 21:15:08

EPSS

0.004

Percentile

73.8%

JSON
Related for CNVD-2021-76794
prion1cvelist1cve1nvd1