CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-5538

Improper Access Control in PALLET CONTROL Ver. 6.3 and earlier allows authenticated attackers to execute arbitrary code with the SYSTEM privilege on the computer where PALLET CONTROL is installed via unspecified vectors. PalletControl 7 to 9.1 are not affected by this vulnerability, however under the environment where PLS Management Add-on Module is used, all versions are affected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://jvn.jp/en/jp/JVN61849442/index.html
https://www.jalinfotec.co.jp/product/pallet/support/Info/notices.html
https://jvn.jp/en/jp/JVN61849442/index.html
https://www.jalinfotec.co.jp/product/pallet/support/Info/notices.html

Products affected by CVE-2020-5538

Jalinfotec » Pallet Control » Version: 6.2

cpe:2.3:a:jalinfotec:pallet_control:6.2
Jalinfotec » Pallet Control » Version: 6.3

cpe:2.3:a:jalinfotec:pallet_control:6.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5538

Products

Pricing

Contact Us