CVE-2020-35205 – ** UNSUPPORTED WHEN ASSIGNED ** Server Side Request Forgery (SSRF) in Web Compliance Manag …

CVE-2020-35205 – UNSUPPORTED WHEN ASSIGNED Server Side Request Forgery (SSRF) in Web Compliance Manag …

11 January 2021

Vuln ID: CVE-2020-35205

Published: 2021-01-11 03:15:13Z

Description: ** UNSUPPORTED WHEN ASSIGNED ** Server Side Request Forgery (SSRF) in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows attackers to scan internal ports and make outbound connections via the initFile.jsp file. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Source: NVD.NIST.GOV

Date:

11 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Oasis Security reels in $35M more to secure nonhuman identities1 May 2024
Senators grill UnitedHealth CEO on Change Healthcare cyberattack1 May 2024
Website Heatmap: What It Is, Why You Need It, And How To Use It1 May 2024
Test Automation: Features, Benefits, And Challenges Of Automated Testing1 May 2024
4 Ways To Remove Mac Purgeable Space1 May 2024