CVE-2020-7480

CVE-2020-7480

Vendor N/A
Product Andover Continuum (All versions)
Weakness CWE-94 · Code injection
Published March 23, 2020
Last update August 4, 2024

CVSS base score

What the vulnerability does

01Description

A CWE-94: Improper Control of Generation of Code ('Code Injection') vulnerability exists in Andover Continuum (All versions), which could cause files on the application server filesystem to be viewable when an attacker interferes with an application's processing of XML data.

Key dates

02Disclosure timeline

March 23, 2020 CVE published
August 4, 2024 Record updated