CVE-2020-9437

CVE-2020-9437

EPSS 1.0%

SecureAuth.aspx in SecureAuth IdP 9.3.0 suffers from a client-side template injection that allows for script execution, in the same manner as XSS.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://docs.secureauth.com/display/SID/SecureAuth+IdP+Latest+Releases https://know.bishopfox.com/advisories https://labs.bishopfox.com/advisories/secureauth-version-9.3