← back
CVE-2021-20114

CVE-2021-20114

18Vexday Risk Score

Patch soon. It has a working public exploit.

ssvc Attendepss 6.0%
exploitation probability
6.0%top 8% of all CVEs
observed exploitation
nono source reports it
When installed following the default/recommended settings, TCExam <= 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory, which included sensitive database backup files.
Affected products
n/a · TCExam