Maarch : Security Vulnerabilities, CVEs, Published In 2020
An issue was discovered in Maarch RM before 2.5. A path traversal vulnerability allows an unauthenticated remote attacker to overwrite any files with a crafted POST request if the default installation procedure was followed. This results in a permanent Denial of Service.
Max CVSS
9.1
EPSS Score
0.25%
Published
2020-01-17
Updated
2020-01-28
An issue was discovered in Maarch RM before 2.5. A privilege escalation vulnerability allows an authenticated user with lowest privileges to give herself highest administration privileges via a crafted PUT request to an unauthorized resource.
Max CVSS
8.8
EPSS Score
0.10%
Published
2020-01-17
Updated
2020-08-24
2 vulnerabilities found