PT-2017-8692 · Unknown · Cloudview Nms

Deral Heiland

·

Published

2017-04-10

·

Updated

2017-04-14

·

CVE-2016-5076

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions CloudView NMS versions prior to 2.10a
Description The issue allows remote attackers to obtain sensitive information by making a direct request for the admin/auto.def file.
Recommendations For versions prior to 2.10a, update to version 2.10a or later to resolve the issue.

Exploit

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2016-5076

Affected Products

Cloudview Nms