Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2020-13945

Disclosure Date: December 07, 2020 (last updated November 28, 2024)
In Apache APISIX, the user enabled the Admin API and deleted the Admin API access IP restriction rules. Eventually, the default token is allowed to access APISIX management data. This affects versions 1.2, 1.3, 1.4, 1.5.
Attack Vector: NetworkPrivileges: LowUser Interaction: None
0
0