CVE-2018-1000126

Name of the Vulnerable Software and Affected Versions: Ajenti version 2

Description: The issue allows for information disclosure, which can lead to user and system enumeration, as well as exposure of data from the /etc/ajenti/config.yml file. This can be exploited through network connectivity to the web application.

Recommendations: For Ajenti version 2, update to a version that fixes the information disclosure vulnerability, specifically addressing the issue in Line 176 of the code source.