RedPacket Security

InfoSec News & Tutorials

Vulnerabilities 

IP access control bypass in OpenAsset Digital Asset Management 11.2.1/12.0.19 disclosure

admin , , , , , , , , ,
Click the icon to Follow me:- twitterTelegramRedditDiscord

Posted by Jack Misiura via Fulldisclosure on Dec 11

Title: IP access control bypass

Product: OpenAsset Digital Asset Management by OpenAsset

Vendor Homepage: https://www.openasset.com/

Vulnerable Version: 12.0.19 (Cloud) 11.2.1 (On-premise)

Fixed Version: 12.0.20 (Cloud) 11.4.10 (On-premise)

CVE Number: CVE-2020-28856

Author: Jack Misiura from The Missing Link

Website: https://www.themissinglink.com.au

Timeline:

2020-11-14 Disclosed to Vendor

2020-12-04 Vendor releases final patches…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source

You May Also Like

pexels markus spiske 10894402B252812529

SteelSeries Software Flaw Gives Windows 10 Admin Rights

admin
osint

Million-dollar deposits and friends in high places: how we applied for a job with a ransomware gang

admin
avaddon AR

Avaddon ransomware campaign prompts warnings from FBI, ACSC

admin
Available for Amazon Prime