← back
CVE-2020-36125

CVE-2020-36125

EPSS 0.9%
Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control where password revalidation in sensitive operations can be bypassed remotely by an authenticated attacker through requesting the endpoint directly.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://blog.pridesec.com.br/p/4c972078-5f01-419e-8bea-cf31ff2e3670/https://marketing.paxtechnology.com/about-paxhttps://www.whatspos.com/