CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-29441

An issue was discovered in the Upload Widget in OutSystems Platform 10 before 10.0.1019.0. An unauthenticated attacker can upload arbitrary files. In some cases, this attack may consume the available database space (Denial of Service), corrupt legitimate data if files are being processed asynchronously, or deny access to legitimate uploaded files.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.01

EPSS Ranking 75.8%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 6.4

References

https://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RPD-4310
https://success.outsystems.com/Support/Security/Vulnerabilities/Vulnerability_RPD-4310

Products affected by CVE-2020-29441

Outsystems » Outsystems » Version: 10

cpe:2.3:a:outsystems:outsystems:10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-29441

Products

Pricing

Contact Us