Vulnerabilities > CVE-2020-11595 - Unspecified vulnerability in Cipplanner Cipace 6.80
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
An issue was discovered in CIPPlanner CIPAce 9.1 Build 2019092801. An unauthenticated attacker can make an API request and obtain the upload folder path that includes the hostname in a UNC path.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |