CVE-2020-29145 – In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX …

27 November 2020

Vuln ID: CVE-2020-29145

Published: 2020-11-27 04:15:10Z

Description: In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX that is vulnerable to stored XSS via the name or description field to a solutionUnitServlet?SuName=UserReferenceDataSU Access Rights Group. In most test cases, session hijacking was also possible by utilizing the XSS vulnerability. This potentially allows for full account takeover, or exploiting admins’ browsers by using the beef framework.

Source: NVD.NIST.GOV

Date:

27 November 2020

Categorie(s):

NVD

Tag(s):

NVD

Four trends to top the CISO’s packed agenda26 April 2024
Microsoft Publicly Releases MS-DOS 4.0 Source Code26 April 2024
New SSLoad Malware Combined With Tools Hijacking Entire Network Domain26 April 2024
Hackers Exploiting WP-Automatic Plugin Bug to Create Admin Accounts on WordPress Sites26 April 2024
Top 5 MSP Cyberattacks in 2023/202426 April 2024