Vulnerability Details CVE-2020-25848
HGiga MailSherlock contains weak authentication flaw that attackers grant privilege remotely with default password generation mechanism.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2020-25848
-
cpe:2.3:a:hgiga:msr45_isherlock-antispam:*
-
cpe:2.3:a:hgiga:msr45_isherlock-audit:*
-
cpe:2.3:a:hgiga:msr45_isherlock-base:4.5-206
-
cpe:2.3:a:hgiga:msr45_isherlock-user:4.5-81
-
cpe:2.3:a:hgiga:msr45_isherlock-useradmin:4.5-106
-
cpe:2.3:a:hgiga:ssr45_isherlock-antispam:*
-
cpe:2.3:a:hgiga:ssr45_isherlock-audit:*
-
cpe:2.3:a:hgiga:ssr45_isherlock-base:*
-
cpe:2.3:a:hgiga:ssr45_isherlock-user:*
-
cpe:2.3:a:hgiga:ssr45_isherlock-useradmin:*