Appspace 6.2.4 is vulnerable to a broken authentication mechanism where pages such as /medianet/mail.aspx can be called directly and the framework is exposed with layouts, menus and functionalities.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-04-14T13:56:38

Updated: 2024-08-03T21:33:17.134Z

Reserved: 2021-03-05T00:00:00

Link: CVE-2021-27990

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-04-14T14:15:13.977

Modified: 2024-11-21T05:58:57.390

Link: CVE-2021-27990

cve-icon Redhat

No data.