CVE-2020-14485
N/A
N/A
Summary
OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass client-side access controls or use a crafted request to initiate a session with limited functionality, which may allow execution of admin functions such as SQL queries.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | OpenClinic GA | Versions 5.09.02 and 5.89.05b | affected |
Weaknesses
- CWE-288: AUTHENTICATION BYPASS USING AN ALTERNATE PATH OR CHANNEL CWE-288
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.