CVE-2020-12608
Published
CVSS v3
7.8
HIGH
CVSS v2
9.3
HIGH
Affected
1
PROJECT
Description
An issue was discovered in SolarWinds MSP PME (Patch Management Engine) Cache Service before 1.1.15 in the Advanced Monitoring Agent. There are insecure file permissions for %PROGRAMDATA%\SolarWinds MSP\SolarWinds.MSP.CacheService\config\. This can lead to code execution by changing the CacheService.xml SISServerURL parameter.
This repository contains a few vulnerabilities that were found and reported during vulnerability assessments.
GitHub