Insufficient Input Validation in QED ResourceXpress through 4.9k Allows Server Error in Script Execution

Insufficient Input Validation in QED ResourceXpress through 4.9k Allows Server Error in Script Execution

CVE-2020-28898 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

In QED ResourceXpress through 4.9k, a large numeric or alphanumeric value submitted in specific URL parameters causes a server error in script execution due to insufficient input validation.

Learn more about our Cis Benchmark Audit For Server Software.