CVE-2024-42349

Name of the Vulnerable Software and Affected Versions FOG Server versions 1.5.10.41.4 and earlier

Description The issue concerns the exposure of sensitive information via logs stored on the web server. Specifically, FOG Server creates two logs, fog login accepted.log and fog login failed.log, on the root of the web server, which can leak authorized and rejected logins. These logs contain the name of the user account used to manage FOG, the IP address of the computer used to login, and the User-Agent.

Recommendations For FOG Server versions 1.5.10.41.4 and earlier, update to version 1.5.10.47 or later to fix the issue. As a temporary workaround, consider restricting access to the fog login accepted.log and fog login failed.log files to minimize the risk of exploitation.