CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-20038

A vulnerability was found in SICUNET Access Controller 0.32-05z and classified as critical. Affected by this issue is some unknown functionality of the file card_scan_decoder.php. The manipulation of the argument No/door leads to privilege escalation. The attack may be launched remotely.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 43.6%

CVSS Severity

CVSS v3 Score 6.3

CVSS v2 Score 7.5

References

http://seclists.org/fulldisclosure/2017/Mar/25
https://vuldb.com/?id.98906
http://seclists.org/fulldisclosure/2017/Mar/25
https://vuldb.com/?id.98906

Products affected by CVE-2017-20038

Sicunet » Access Control » Version: 0.32-05z

cpe:2.3:a:sicunet:access_control:0.32-05z

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-20038

Products

Pricing

Contact Us