CVE-2020-36892 | EIBIZ i-Media Server Digital Signage up to 3.8.0 Setting /messagebroker/amf updateUser missing authentication (Exploit 48774 / EDB-48774)

A vulnerability categorized as critical has been discovered in EIBIZ i-Media Server Digital Signage up to 3.8.0. Affected by this issue is some unknown functionality of the file /messagebroker/amf of the component Setting Handler. Such manipulation of the argument updateUser leads to missing authentication.

This vulnerability is listed as CVE-2020-36892. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More