Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2020-4079
HistoryJan 12, 2021 - 8:15 p.m.

CVE-2020-4079

2021-01-1220:15:24
Google
osv.dev
2
combodo itop
it service management
unfiltered data

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON

Combodo iTop is a web based IT Service Management tool. In iTop before versions 2.7.2 and 2.8.0, when the ajax endpoint for the “excel export” portal functionality is called directly it allows getting data without scope filtering. This allows a user to access data they which they should not have access to. This is fixed in versions 2.7.2 and 3.0.0.

Related

prion 1
nvd 1
cvelist 1
cve 1
prion
prion
Design/Logic Flaw
2021-01-12 20:15:00
nvd
nvd
CVE-2020-4079
2021-01-12 20:15:24
cvelist
cvelist
CVE-2020-4079 Information disclosure vulnerability in iTop
2021-01-12 19:20:14
cve
cve
CVE-2020-4079
2021-01-12 20:15:24

AI Score

6.7

Confidence

High

EPSS

0.001

Percentile

28.4%

JSON
Related for OSV:CVE-2020-4079
prion1nvd1cvelist1cve1