CVE-2020-3920

Summary

UltraLog Express device management interface does not properly perform access authentication in some specific pages/functions. Any user can access the privileged page to manage accounts through specific system directory.

Affected Software

VendorProductVersion RangeStatus
UnisoonUltraLog Express1.4.0affected

Weaknesses

  • Broken Authentication

ADP Enrichment

CVE Program Container

Additional References

References