CVE List

CVE-2020-35722

Moderate 6.5

** UNSUPPORTED WHEN ASSIGNED ** CSRF in Web Compliance Manager in Quest Policy Authority 8.1.2.200 allows remote attackers to force user modification/creation via a specially crafted link to the submitUser.jsp file. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Published January 11, 2021.

Affected software

Quest Policy Authority For Unified Communications

Reference links

Sign Up for Alerts