Maarch: >> Maarch Rm >> 2.4.3 Security Vulnerabilities
An issue was discovered in Maarch RM before 2.5. A privilege escalation vulnerability allows an authenticated user with lowest privileges to give herself highest administration privileges via a crafted PUT request to an unauthorized resource.
CVSS Score
8.8
EPSS Score
0.008
Published
2020-01-17
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service.
CVSS Score
9.1
EPSS Score
0.013
Published
2020-01-17