Elevated Privileges Vulnerability in Code Insight by Flexera
CVE-2020-12083

9.9CRITICAL

Key Information:

Vendor: Flexera
Status: Flexnet Code Insight
Vendor: CVE Published:; 17 September 2021

What is CVE-2020-12083?

An elevated privileges vulnerability in Code Insight affects version 7.x up to and including 2020 R1 (7.11.0-64). This flaw allows unauthorized users to escalate their privileges when interacting with Spring MVC calls, potentially leading to security breaches within the application. Remediation measures have been provided by Flexera to address this critical issue.

References

https://community.flexera.com/t5/Code-Insight-Knowledge-B...

x_refsource_CONFIRM

CVSS V3.1

Score:

9.9

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 17, 2021
Vulnerability Reserved
Apr 23, 2020

CVE-2020-12083 Data

JSON