CVE-2020-15390

CVE-2020-15390

EPSS 1.3%

pyActivity in Pega Platform 8.4.0.237 has a security misconfiguration that leads to an improper access control vulnerability via =GetWebInfo.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jayaramyalla.medium.com/sensitive-information-disclosure-due-to-improper-access-control-cve-2020-15390-124573c15824