CVE-2018-7210

Name of the Vulnerable Software and Affected Versions iDashboards version 9.6b

Description An issue allows remote attackers to obtain sensitive information via a direct request for the "idb/config?CMD=installLicense" URI. This can be demonstrated by accessing intranet IP addresses and names of guest accounts.

Recommendations For iDashboards version 9.6b, consider restricting access to the "idb/config?CMD=installLicense" URI to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.