PT-2018-16983 · Netcadops · Netcadops Web Application
Published
2018-02-20
·
Updated
2019-10-09
·
CVE-2018-5477
CVSS v3.1
5.8
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
netCADOPS Web Application versions 3.4 and prior
netCADOPS Web Application versions 7.1 and prior
netCADOPS Web Application versions 7.2x and prior
netCADOPS Web Application versions 8.0 and prior
netCADOPS Web Application versions 8.1 and prior
Description
An Information Exposure issue exists in the password entry section of the netCADOPS Web Application, potentially exposing critical database information.
Recommendations
For netCADOPS Web Application versions 3.4 and prior, update to a version later than 3.4 to resolve the issue.
For netCADOPS Web Application versions 7.1 and prior, update to a version later than 7.1 to resolve the issue.
For netCADOPS Web Application versions 7.2x and prior, update to a version later than 7.2x to resolve the issue.
For netCADOPS Web Application versions 8.0 and prior, update to a version later than 8.0 to resolve the issue.
For netCADOPS Web Application versions 8.1 and prior, update to a version later than 8.1 to resolve the issue.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Netcadops Web Application