CVE-2020-11977

Posted on by admin

CVE-2020-11977

In Apache Syncope 2.1.X releases prior to 2.1.7, when the Flowable extension is enabled, an administrator with workflow entitlements can use Shell Service Tasks to perform malicious operations, including but not limited to file read, file write, and code execution.

Source: CVE-2020-11977

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다