Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-25258

An issue was discovered in Hyland OnBase 16.0.2.83 and below, 17.0.2.109 and below, 18.0.0.37 and below, 19.8.16.1000 and below and 20.3.10.1000 and below. It uses ASP.NET BinaryFormatter.Deserialize in a manner that allows attackers to transmit and execute bytecode in SOAP messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 60.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5
Products affected by CVE-2020-25258
  • Hyland » Onbase » Version: N/A
    cpe:2.3:a:hyland:onbase:-
  • Hyland » Onbase » Version: 16.0.0.0
    cpe:2.3:a:hyland:onbase:16.0.0.0
  • Hyland » Onbase » Version: 16.0.2.83
    cpe:2.3:a:hyland:onbase:16.0.2.83
  • Hyland » Onbase » Version: 17.0.0.0
    cpe:2.3:a:hyland:onbase:17.0.0.0
  • Hyland » Onbase » Version: 17.0.2.109
    cpe:2.3:a:hyland:onbase:17.0.2.109
  • Hyland » Onbase » Version: 18.0.0.0
    cpe:2.3:a:hyland:onbase:18.0.0.0
  • Hyland » Onbase » Version: 18.0.0.32
    cpe:2.3:a:hyland:onbase:18.0.0.32
  • Hyland » Onbase » Version: 18.0.0.37
    cpe:2.3:a:hyland:onbase:18.0.0.37
  • Hyland » Onbase » Version: 19.0.0.0
    cpe:2.3:a:hyland:onbase:19.0.0.0
  • Hyland » Onbase » Version: 19.8.16.1000
    cpe:2.3:a:hyland:onbase:19.8.16.1000
  • Hyland » Onbase » Version: 19.8.9.1000
    cpe:2.3:a:hyland:onbase:19.8.9.1000
  • Hyland » Onbase » Version: 20.0.0.0
    cpe:2.3:a:hyland:onbase:20.0.0.0
  • Hyland » Onbase » Version: 20.3.10.1000
    cpe:2.3:a:hyland:onbase:20.3.10.1000


Products
Pricing
Contact Us

Shodan ® - All rights reserved