Vulnerability Details CVE-2020-28898
In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.008
EPSS Ranking 73.6%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
Products affected by CVE-2020-28898
-
cpe:2.3:a:resourcexpress:resourcexpress:-
-
cpe:2.3:a:resourcexpress:resourcexpress:4.9k