PT-2018-11298 · Circarlife · Circarlife Scada
David Castro
·
Publicado
2018-06-22
·
Atualizado
2021-07-08
·
CVE-2018-12634
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
CirCarLife Scada versions prior to 4.3
Description
The issue allows remote attackers to obtain sensitive information. This can be achieved by making a direct request for specific URI endpoints, such as "html/log" or "services/system/info.html".
Recommendations
For versions prior to 4.3, update to version 4.3 or later to resolve the issue.
Exploit
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Circarlife Scada