PT-2017-16334 · Sendquick+1 · Sendquick Entera+1
Published
2017-02-05
·
Updated
2024-02-14
·
CVE-2017-5137
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
SendQuick Entera versions prior to 2HF16
Avera versions prior to 2HF16
Description
An issue allows an attacker to request and download SMS logs without authentication.
Recommendations
For SendQuick Entera versions prior to 2HF16, update to version 2HF16 or later to resolve the issue.
For Avera versions prior to 2HF16, update to version 2HF16 or later to resolve the issue.
Fix
Insertion into Log File
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Avera
Sendquick Entera