Vulnerabilities > CVE-2020-7938 - Unspecified vulnerability in Plone 5.2.0/5.2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
plone.restapi in Plone 5.2.0 through 5.2.1 allows users with a certain privilege level to escalate their privileges up to the highest level.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- http://www.openwall.com/lists/oss-security/2020/01/24/1
- http://www.openwall.com/lists/oss-security/2020/01/24/1
- https://plone.org/security/hotfix/20200121
- https://plone.org/security/hotfix/20200121
- https://plone.org/security/hotfix/20200121/privilege-escalation-when-plone-restapi-is-installed
- https://plone.org/security/hotfix/20200121/privilege-escalation-when-plone-restapi-is-installed
- https://www.openwall.com/lists/oss-security/2020/01/22/1
- https://www.openwall.com/lists/oss-security/2020/01/22/1