Main Vulnerability Database Exploits ID:3104 - Exploit for Improper Verification of Cryptographic Signature in exacqVision Enterprise System Manager and exacqVision Web Service - CVE-2020-9047

ID:3104 - Exploit for Improper Verification of Cryptographic Signature in exacqVision Enterprise System Manager and exacqVision Web Service - CVE-2020-9047

Published: July 15, 2020

Vulnerability identifier: #VU29167

Vulnerability risk: Low

CVE-ID: CVE-2020-9047

CWE-ID: CWE-347

Exploitation vector: Remote access

Vulnerable software:
exacqVision Enterprise System Manager
exacqVision Web Service

Link to public exploit:

https://github.com/norrismw/CVE-2020-9047

Vulnerability description

The vulnerability allows a remote user to compromise the target system.

The vulnerability exists due to the affected software does not verify the cryptographic signature for data. A remote administrator can download and run a malicious executable.

Remediation

Install updates from vendor's website.

ID:3104 - Exploit for Improper Verification of Cryptographic Signature in exacqVision Enterprise System Manager and exacqVision Web Service - CVE-2020-9047

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human