Vulnerabilities > CVE-2020-14486 - Incorrect Authorization vulnerability in Openclinic GA Project Openclinic GA 5.09.02/5.89.05B
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
An attacker may bypass permission/authorization checks in OpenClinic GA 5.09.02 and 5.89.05b by ignoring the redirect of a permission failure, which may allow unauthorized execution of commands.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |