Iportalis

iportalis

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Iportalis Control Portal

iportalis_control_portal

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2020-9002 1Iportalis 1Iportalis Control Portal Nov 21, 2024 Sep 1, 2021 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 An issue was discovered in iPortalis iCS 7.1.13.0. An attacker can gain privileges by intercepting a request and changing UserRoleKey=COMPANY_ADMIN to UserRoleKey=DOMAIN_ADMIN (to achieve Domain Administrator access).
CVE-2020-9000 1Iportalis 1Iportalis Control Portal Nov 21, 2024 Sep 1, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in iPortalis iCS 7.1.13.0. Attackers can send a sequence of requests to rapidly cause .NET Input Validation errors. This increases the size of the log file on the remote server until memory is exh...Show more An issue was discovered in iPortalis iCS 7.1.13.0. Attackers can send a sequence of requests to rapidly cause .NET Input Validation errors. This increases the size of the log file on the remote server until memory is exhausted, therefore consuming the maximum amount of resources (triggering a denial of service condition).Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2020-9002

1Iportalis

1Iportalis Control Portal

Nov 21, 2024

Sep 1, 2021

N/A· v4

7.5 HIGH· v3

6.0 MEDIUM· v2

An issue was discovered in iPortalis iCS 7.1.13.0. An attacker can gain privileges by intercepting a request and changing UserRoleKey=COMPANY_ADMIN to UserRoleKey=DOMAIN_ADMIN (to achieve Domain Administrator access).

CVE-2020-9000