Unrated severityNVD Advisory· Published Mar 6, 2024· Updated Aug 5, 2024

CVE-2020-26942

Description

An issue discovered in Axigen Mail Server 10.3.x before 10.3.1.27 and 10.3.2.x before 10.3.3.1 allows unauthenticated attackers to submit a setAdminPassword operation request, subsequently setting a new arbitrary password for the admin account.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Gecad Technologies/Mail Servercpe-rescue
Merak/Mail Serverllm-fuzzy
Range: >=10.3.0, <10.3.1.27; >=10.3.2.0, <10.3.3.1

Patches

Vulnerability mechanics

References

www.axigen.com/knowledgebase/Axigen-WebAdmin-Authentication-Bypass-Vulnerability-CVE-2020-26942-_387.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000