← back
CVE-2020-9315

CVE-2020-9315

40Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 82%
exploitation probability
82%top 1% of all CVEs
observed exploitation
nono source reports it
** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read access to encryption keys. NOTE: a related support policy can be found in the www.oracle.com references attached to this CVE.
Affected products
n/a · n/a