Hyland OnBase 19.x and below – Log Injection And Denial Of Service

September 8, 2020

Posted by AdaptiveSecurity Consulting via Fulldisclosure on Sep 07

CVSSv3.1 Score
————————————————-
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

Vendor
————————————————-
Hyland Software – (https://www.hyland.com/en/ and https://www.onbase.com/en/)

Product
————————————————-
Hyland OnBase
All derivatives based on OnBase

Versions Affected
————————————————-
All versions up to and prior to OnBase…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source

You may have missed

image

[KILLSEC] – Ransomware Victim: Nationwide Legal

November 24, 2024
image

[KILLSEC] – Ransomware Victim: Eassy Life

November 24, 2024
image

[INCRANSOM] – Ransomware Victim: Service Avicole JGL

November 24, 2024
image

[KILLSEC] – Ransomware Victim: Vogue Homes

November 24, 2024
image

[KILLSEC] – Ransomware Victim: Efi Sales

November 24, 2024