What the vulnerability does

01Description

VISAM VBASE Editor version 11.5.0.2 and VBASE Web-Remote Module allow weak hashing algorithm and insecure permissions which may allow a local attacker to bypass the password-protected mechanism through brute-force attacks, cracking techniques, or overwriting the password hash.

Key dates

02Disclosure timeline

April 3, 2020 CVE published
August 4, 2024 Record updated