### [CVE-2020-7499](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7499)
![](https://img.shields.io/static/v1?label=Product&message=U.motion%20Servers%20and%20Touch%20Panels%20(affected%20versions%20listed%20in%20the%20security%20notification)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-863%3A%20Incorrect%20Authorization&color=brighgreen)

### Description

A CWE-863: Incorrect Authorization vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notification) which could cause unauthorized access when a low privileged user makes unauthorized changes.

### POC

#### Reference
- https://www.se.com/ww/en/download/document/SEVD-2020-133-03/
- https://www.se.com/ww/en/download/document/SEVD-2020-133-03/

#### Github
No PoCs found on GitHub currently.