Improper access control in Sun ONE/iPlanet Web Server - CVE-2020-9315
Published: May 12, 2020
Sun ONE/iPlanet Web Server
Detailed vulnerability description
The vulnerability allows a remote attacker to gain unauthorized access to sensitive information.
The vulnerability exists due to improper access restrictions within admingui/version URIs in the Administration console. A remote attacker can send a specially crafted request and read the encryption keys
How to mitigate CVE-2020-9315
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.
Note, this product is no longer supported by the vendor.