CVE-2020-36548

A vulnerability classified as problematic has been found in GE Voluson S8. Affected is the file /uscgi-bin/users.cgi of the Service Browser. The manipulation leads to improper authentication and elevated access possibilities. It is possible to launch the attack on the local host.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:ge:voluson_s8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:ge:voluson_s8:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:29

Type Values Removed Values Added
CVSS v2 : 7.2
v3 : 7.8
v2 : 7.2
v3 : 5.9
References () https://vuldb.com/?id.129834 - () https://vuldb.com/?id.129834 -
References () https://www.scip.ch/?news.20200701 - () https://www.scip.ch/?news.20200701 -

07 Nov 2023, 03:22

Type Values Removed Values Added
References (N/A) https://vuldb.com/?id.129834 - Third Party Advisory () https://vuldb.com/?id.129834 -
References (N/A) https://www.scip.ch/?news.20200701 - Third Party Advisory () https://www.scip.ch/?news.20200701 -

Information

Published : 2022-06-17 13:15

Updated : 2024-11-21 05:29


NVD link : CVE-2020-36548

Mitre link : CVE-2020-36548

CVE.ORG link : CVE-2020-36548


JSON object : View

Products Affected

ge

  • voluson_s8_firmware
  • voluson_s8
CWE
CWE-287

Improper Authentication