Karlo Dautović

**Name of the Vulnerable Software and Affected Versions** 4D Server Application versions v17 through v19 R7 **Description** An information disclosure issue allows attackers to retrieve password hashes for all users via eavesdropping. **Recommendations** For versions v17 through v19 R7, update to a version later than v19 R7 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** 4D Server software versions v17 through v19 R7 **Description** A broken authentication issue allows attackers to send crafted TCP packets containing requests to perform arbitrary actions. **Recommendations** For versions v17 through v19 R7, update to a version later than v19 R7 to resolve the issue. At the moment, there is no information about other mitigation measures for this specific issue.