Vulnerabilities > CVE-2020-14945 - Unspecified vulnerability in Globalradar BSA Radar 1.6.7234.24750

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

globalradar

NVD

Published: 2020-06-22

Updated: 2022-05-03

Summary

A privilege escalation vulnerability exists within Global RADAR BSA Radar 1.6.7234.24750 and earlier that allows an authenticated, low-privileged user to escalate their privileges to administrator rights (i.e., the BankAdmin role) via modified SaveUser data.

Vulnerable Configurations

Part	Description	Count
Application	Globalradar Globalradar BSA Radar - Globalradar BSA Radar 1.6.7234.24750	2

References

https://github.com/wsummerhill/BSA-Radar_CVE-Vulnerabilities/blob/master/CVE-2020-14945%20-%20Privilege%20Escalation.md
https://github.com/wsummerhill/BSA-Radar_CVE-Vulnerabilities
https://www.exploit-db.com/exploits/48649