PT-2020-17803 · Servisign · Servisign

Keniver Wang

Published

2020-02-03

Updated

2022-05-25

CVE-2020-3927

CVSS v2.0

8.5

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:P

Name of the Vulnerable Software and Affected Versions ServiSign security plugin (affected versions not specified)

Description An arbitrary-file-access issue exists, allowing attackers to access arbitrary files on the target system by learning a specific API function and crafting an API parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Files Accessible to External Parties

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-552

Related Identifiers

CVE-2020-3927

Affected Products

Servisign

PT-2020-17803 · Servisign · Servisign

CVE-2020-3927

Weakness Enumeration

Related Identifiers

Affected Products

References · 4