Published: 18/12/2020 Updated: 21/11/2024

In the Pulsar manager 0.1.0 version, malicious users will be able to bypass pulsar-manager's admin, permission verification mechanism by constructing special URLs, thereby accessing any HTTP API.

Vulnerable Product	Search on Vulmon	Subscribe to Product
* pulsar manager
apache pulsar manager 0.1.0

CVE-2020-17520 Apache Pulsar Manager Information Disclosure Severity: High Vendor: The Apache Software Foundation Versions Affected: Apache Pulsar Manager 010 Description In Pulsar manager 010 version, malicious users will be able to bypass pulsar-manager's admin, permission verification mechanism by constructing special URLs, thereby acces ...

NVD-CWE-noinfo https://nvd.nist.gov http://seclists.org/oss-sec/2020/q4/231 https://www.first.org/epss https://lists.apache.org/thread.html/rb8b3025f8b507dec0b66791df408cdaf2d155866db1c7a1a4bc621cd%40%3Cdev.pulsar.apache.org%3E https://lists.apache.org/thread.html/rb8b3025f8b507dec0b66791df408cdaf2d155866db1c7a1a4bc621cd%40%3Cdev.pulsar.apache.org%3E

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-17520

Vulnerability Summary

Vulnerability Trend

Mailing Lists

References

Vulmon Search

About

Products

Connect