CVE-2020-7004

Summary

VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module may allow weak or insecure permissions on the VBASE directory resulting in elevation of privileges or malicious effects on the system the next time a privileged user runs the application.

Affected Software

VendorProductVersion RangeStatus
VISAMVBASE Editor11.5.0.2affected
VISAMVBASE Web-Remote Moduleallaffected

Weaknesses

  • CWE-276: INCORRECT DEFAULT PERMISSIONS CWE-276

ADP Enrichment

CVE Program Container

Additional References

References